2 matches found
CVE-2022-22535
SAP ERP HCM Portugal - versions 600, 604, 608, does not perform necessary authorization checks for a report that reads the payroll data of employees in a certain area. Since the affected report only reads the payroll information, the attacker can neither modify any information nor cause...
CVE-2022-22535
CVE-2022-22535 is described as a permissions issue in SAP ERP HCM Portugal (versions 600–608) where a payroll-report reads payroll data without proper authorization checks. The root cause is insufficient access checks for that report, enabling read-only exposure of payroll information in a specif...