Lucene search

CVE-2024-4138 Missing Authorization Checks in SAP S/4 HANA (Manage Bank Statement Reprocessing Rules)

🗓️ 14 May 2024 03:10:53Reported by sapType

SAP S/4 HANA Manage Bank Statement Reprocessing Rules privilege escalation

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 3
CVE	CVE-2024-4138	14 May 202416:17	–	cve
Vulnrichment	CVE-2024-4138 Missing Authorization Checks in SAP S/4 HANA (Manage Bank Statement Reprocessing Rules)	14 May 202403:53	–	vulnrichment
NVD	CVE-2024-4138	14 May 202416:17	–	nvd

[
  {
    "defaultStatus": "unaffected",
    "product": "SAP S/4 HANA (Manage Bank Statement Reprocessing Rules)",
    "vendor": "SAP_SE",
    "versions": [
      {
        "status": "affected",
        "version": "SAPSCORE 131"
      },
      {
        "status": "affected",
        "version": "S4CORE 105"
      },
      {
        "status": "affected",
        "version": "S4CORE 106"
      },
      {
        "status": "affected",
        "version": "S4CORE107"
      },
      {
        "status": "affected",
        "version": "S4CORE 108"
      }
    ]
  }
]

Source	Link
me	www.me.sap.com/notes/3434666
support	www.support.sap.com/en/my-support/knowledge-base/security-notes-news.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 May 2024 03:53Current

5.4Medium risk

Vulners AI Score5.4

CVSS34.3

EPSS0.00102

CWE-862

cve-2024-4138; missing authorization checks; sap s/4 hana; manage bank statement reprocessing rules; privilege escalation; user authentication; integrity