/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- Security audit reports the Spring Framework Open Redirect Vulnerability:
/hana/shared/<SID>/xs/.../executionroot/<root-id>/app/WEB-INF/lib/spring-web-5.0.11.RELEASE.jar
/hana/shared/<SID>/xs/.../executionroot/<root-id>/app/WEB-INF/lib/spring-web-5.3.23.jar - The affected droplets are being used by application eadesigner-backend.
Read more...
Environment
SAP Enterprise Architecture Designer (EAD) for SAP HANA 1.0
Product
SAP Enterprise Architecture Designer, edition for SAP HANA 1.0
Keywords
Enterprise Architecture Designer, EAD, PowerDesigner, PD, HANA, vulnerability, spring, framework, weakness, eadesigner, eadesigner-backend, eadesigner-db, eadesigner-service , KBA , BC-EAD , SAP Enterprise Architecture Designer , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)