Authorization

2019-01-0820:29:00

PRIOn knowledge base

www.prio-n.com

8.8 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.1%

JSON

Under some circumstances, masterdata maintenance in SAP BW/4HANA (fixed in DW4CORE version 1.0 (SP08)) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.

CPENameOperatorVersion
bw\\/4hanaeq1.0 sp8

CPE	Name	Operator	Version
	bw\\/4hana	eq	1.0 sp8

References

www.securityfocus.com/bid/106467

launchpad.support.sap.com/

wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=509151985