Description
An authenticated user can use functions of CA-CL to which access should be restricted. This may result in an escalation of privileges.
Available fix and Supported packages
- SAP_APPL | 31I | 31I
- SAP_APPL | 40B | 40B
- SAP_APPL | 45B | 45B
- SAP_APPL | 46B | 46B
- SAP_APPL | 46C | 46C
- SAP_ABA | 620 | 620
- SAP_ABA | 640 | 640
- SAP_ABA | 700 | 702
- SAP_ABA | 710 | 711
- SAP_ABA | 730 | 730
- SAP_ABA | 731 | 731
- SAP_APPL 31I | SAPKH31IB9 |
- SAP_APPL 40B | SAPKH40B89 |
- SAP_APPL 45B | SAPKH45B67 |
- SAP_APPL 46B | SAPKH46B62 |
- SAP_APPL 46C | SAPKH46C66 |
- SAP_ABA 710 | SAPKA71016 |
- SAP_ABA 701 | SAPKA70113 |
- SAP_ABA 711 | SAPKA71111 |
- SAP_ABA 702 | SAPKA70213 |
- SAP_ABA 730 | SAPKA73009 |
- SAP_ABA 620 | SAPKA62074 |
- SAP_ABA 640 | SAPKA64032 |
- SAP_ABA 700 | SAPKA70029 |
- SAP_ABA 731 | SAPKA73107 |
Affected component
- CA-CL-SEL
Object selection
CVSS
Score: 0
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/1783807
