EUVD-2020-27364

Malware in sbrugna...

CVE-2020-6214

SAP S/4HANA Financial Products Subledger, version 100, uses an incorrect authorization object in some reports. Although the affected reports are protected with other authorization objects, exploitation of the vulnerability would allow an authenticated attacker to view, change, or delete data,...

SAP Netweaver IUUC_RECON_RC_COUNT_TABLE_BIG ABAP Code Injection Exploit

SAP Netweaver version SAP DMIS 20111731 SP 0013 suffers from a remote ABAP code injection vulnerability in IUUCRECONRCCOUNTTABLEBIG. ======================================================================= title: Remote ABAP Code Injection in SAP IUUCRECONRCCOUNTTABLEBIG product: SAP Netweaver...

CVE-2020-6362

CVE-2020-6362 affects SAP Banking Services 500, where an incorrect authorization object in certain reports allows privilege escalation and potential segregation-of-duties violations. The vulnerability could result in service interruptions and system unavailability for affected users. The root cau...

CVE-2020-6214

SAP S/4HANA Financial Products Subledger, version 100, uses an incorrect authorization object in some reports. Although the affected reports are protected with other authorization objects, exploitation of the vulnerability would allow an authenticated attacker to view, change, or delete data,...

Authorization

SAP S/4HANA Financial Products Subledger, version 100, uses an incorrect authorization object in some reports. Although the affected reports are protected with other authorization objects, exploitation of the vulnerability would allow an authenticated attacker to view, change, or delete data,...

CVE-2020-6214

The CVE describes SAP S/4HANA (Financial Products Subledger), Version 100, as vulnerable due to an incorrect authorization object in certain reports. The underlying vulnerability allows an authenticated attacker to view, change, or delete data, compromising separation of duties within the system....