Описание
SAP Financial Consolidation - version 10.1, does not perform necessary authorization checks for updating homepage messages, resulting for an unauthorized user to alter the maintenance system message.
Ссылки
- Vendor Advisory
- Permissions RequiredVendor Advisory
- Vendor Advisory
- Permissions RequiredVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:sap:financial_consolidation:10.1:*:*:*:*:*:*:*
EPSS
Процентиль: 38%
0.0017
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-862
Связанные уязвимости
CVSS3: 5.3
github
почти 4 года назад
SAP Financial Consolidation - version 10.1, does not perform necessary authorization checks for updating homepage messages, resulting for an unauthorized user to alter the maintenance system message.
EPSS
Процентиль: 38%
0.0017
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-862