SAP Management Console list logfiles
Description
The SAP Management Console (SAP MC) is a centralized administration interface for monitoring and managing SAP systems. A vulnerability exists in the SAP MC SOAP interface that allows unauthenticated remote attackers to enumerate and list available system logfiles and developer tracefiles without authentication. This information disclosure vulnerability exposes the internal structure and naming conventions of SAP system files, which can be leveraged for reconnaissance in preparation for further attacks.
Remediation
Apply SAP Security Note 1439348 to remediate this vulnerability. This security note provides patches and configuration changes to enforce proper authentication on the SAP Management Console SOAP interface methods. To implement the fix: (1) Download SAP Security Note 1439348 from the SAP Support Portal, (2) Review the note's prerequisites and affected SAP NetWeaver versions, (3) Apply the provided corrections using the SAP Support Package Manager (SPAM) or manual implementation steps as specified in the note, (4) Restart the affected SAP instances to activate the changes, and (5) Verify that unauthenticated access to the ListLogFiles and related methods is blocked by testing the SOAP interface without credentials.