Assigner | sap |
Reserved | 2024-04-23 |
Published | 2024-05-14 |
Updated | 2024-06-04 |
Description
SAP Bank Account Management does not perform necessary authorization check for an authorized user, resulting in escalation of privileges. As a result, it has a low impact to confidentiality to the system.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N |
Problem types
CWE-862: Missing Authorization
Product status
100
101
102
103
104
105
106
107
108
References
https://me.sap.com/notes/3392049
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html