Description
A malicious user can exploit SCM-BAS-MD-LO and use specially crafted inputs to modify data-base commands, resulting in the retrieval of additional information persisted by the system.
Available fix and Supported packages
- SCM | 400 | 400
- SCM | 410 | 410
- SCM | 500 | 500
- SCM_BASIS | 510 | 510
- SCM_BASIS | 700 | 700
- SCM_BASIS | 701 | 701
- SCM 400 | SAPKY40022 |
- SCM 500 | SAPKY50018 |
- SCM 410 | SAPKY41021 |
- SCM_BASIS 510 | SAPK-51017INSCMBASIS |
- SCM_BASIS 701 | SAPK-70102INSCMBASIS |
- SCM_BASIS 700 | SAPK-70008INSCMBASIS |
Affected component
- SCM-BAS-MD-LO
Location
CVSS
Score: 0
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/1489734