Description
Certain functions of the report H99_B2AFILE can be called even if the user who is logged in does not have the required authorization. This may cause a privilege escalation.
An attacker can use the report H99_B2AFILE to read and write any data on the application server whose paths are available using definitions of logical directories (transaction FILE).
Available fix and Supported packages
- SAP_HR | 46C | 46C
- SAP_HRCDE | 470 | 470
- SAP_HRCDE | 500 | 500
- SAP_HRCDE | 600 | 600
- SAP_HRCDE | 604 | 604
Affected component
- PY-DE-BA
Business to Administration
CVSS
Score: 0
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/1470094