Authorization

2020-03-1021:15:00

PRIOn knowledge base

www.prio-n.com

4.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

22.9%

JSON

The selection query in SAP Treasury and Risk Management (Transaction Management) (EA-FINSERV?versions 600, 603, 604, 605, 606, 616, 617, 618, 800 and S4CORE versions 101, 102, 103, 104) returns more records than it should be when selecting and displaying the contract number, leading to Missing Authorization Check.

CPENameOperatorVersion
treasury_and_risk_management_\\(ea-finserv\\)eq600
treasury_and_risk_management_\\(ea-finserv\\)eq603
treasury_and_risk_management_\\(ea-finserv\\)eq604
treasury_and_risk_management_\\(ea-finserv\\)eq605
treasury_and_risk_management_\\(ea-finserv\\)eq606
treasury_and_risk_management_\\(ea-finserv\\)eq616
treasury_and_risk_management_\\(ea-finserv\\)eq617
treasury_and_risk_management_\\(ea-finserv\\)eq618
treasury_and_risk_management_\\(ea-finserv\\)eq800
treasury_and_risk_management_\\(s4core\\)eq101

Name	Operator	Version
treasury_and_risk_management_\\(ea-finserv\\)	eq	600
treasury_and_risk_management_\\(ea-finserv\\)	eq	603
treasury_and_risk_management_\\(ea-finserv\\)	eq	604
treasury_and_risk_management_\\(ea-finserv\\)	eq	605
treasury_and_risk_management_\\(ea-finserv\\)	eq	606
treasury_and_risk_management_\\(ea-finserv\\)	eq	616
treasury_and_risk_management_\\(ea-finserv\\)	eq	617
treasury_and_risk_management_\\(ea-finserv\\)	eq	618
treasury_and_risk_management_\\(ea-finserv\\)	eq	800
treasury_and_risk_management_\\(s4core\\)	eq	101