Due to insufficient input validation, SAP Financial Consolidation - version 1010, allows an authenticated attacker with user privileges to alter current user session. On successful exploitation, the attacker can view or modify information, causing a limited impact on confidentiality and integrity of the application.
CPE | Name | Operator | Version |
---|---|---|---|
financial_consolidation | eq | 1010 |