Description
The SAP Management Console (SAP MC) provides a common framework for centralized system management. It allows you to monitor and perform basic administration tasks on the SAP system centrally, which simplifies system administration. The SAP Management Console exposes certain methods which allows an unauthenticated user to access sensitive information such as the list of available logfiles and developer tracefiles through the SAP Management Console SOAP Interface.
Remediation
Install SAP security note 1439348.
References
Related Vulnerabilities
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-17671)
GraphQL Non-JSON Queries over POST: Potential CSRF Vulnerability
WordPress Plugin WordPress Mobile Pack Information Disclosure (2.1.2)
TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-20114)
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3946)