Assigner | sap |
Reserved | 2024-05-07 |
Published | 2024-06-11 |
Updated | 2024-06-11 |
Description
Manage Incoming Payment Files (F1680) of SAP S/4HANA does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. As a result, it has high impact on integrity and no impact on the confidentiality and availability of the system.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
Problem types
CWE-862: Missing Authorization
Product status
S4CORE 102
103
104
105
106
107
108
References
https://me.sap.com/notes/3466175
https://support.sap.com/en/my-support/knowledge-base/security-notes-news.html