2 matches found
CVE-2021-21467
CVE-2021-21467 affects SAP Banking Services (Generic Market Data). The vulnerability stems from improper authorization checks that allow an authenticated user to access restricted Business Partner Generic Market Data, enabling elevation of privileges. Affected product/component: SAP Banking Servi...
CVE-2020-6362
CVE-2020-6362 affects SAP Banking Services 500, where an incorrect authorization object in certain reports allows privilege escalation and potential segregation-of-duties violations. The vulnerability could result in service interruptions and system unavailability for affected users. The root cau...