Description
Potential modification or disclosure of persisted data in SAP_BASIS
(FSI).
A malicious user can exploit SAP_BASIS (FSI) and use specially crafted
inputs to modify data-base commands, resulting in either the retrieval
of additional information or modification of data persisted by the
system.
Available fix and Supported packages
- SAP_BASIS | 711 | 711
Affected component
- BC-SRV-FSI
Fast Search Infrastructure
CVSS
Score: 0
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/1515822