exploitDog

GHSA-4r5j-cg4f-m685

Опубликовано: 09 июл. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

SAP S/4HANA Finance (Advanced Payment Management) does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. As a result, it has a low impact to confidentiality and availability but there is no impact on the integrity.

SAP S/4HANA Finance (Advanced Payment Management) does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. As a result, it has a low impact to confidentiality and availability but there is no impact on the integrity.

Ссылки

EPSS

Процентиль: 43%

0.00209

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-862

Связанные уязвимости

CVE-2024-37172

CVSS3: 5.4

nvd

больше 1 года назад

SAP S/4HANA Finance (Advanced Payment Management) does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. As a result, it has a low impact to confidentiality and availability but there is no impact on the integrity.

BDU:2024-11637

CVSS3: 5.4

fstec

больше 1 года назад

Уязвимость компонента Advanced Payment Management программного средства управления финансами SAP S/4HANA Finance, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 43%

0.00209

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-862