CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0CVE-2019-0338
https://notcve.org/view.php?id=CVE-2019-0338
During an OData V2/V4 request in SAP Gateway, versions 750, 751, 752, 753, the HTTP Header attributes cache-control and pragma were not properly set, allowing an attacker to access restricted information, resulting in Information Disclosure. Durante una petición V2/V4 OData en SAP Gateway, versiones 750, 751, 752, 753, los atributos de Encabezado HTTP controlados por caché y pragma no se ajustaron correctamente, lo que permite a un atacante acceder a información restringida, resultando en la Divulgación de Información. • https://launchpad.support.sap.com/#/notes/2793351 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=523998017 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •