Skip links

SAP BP Authorization check with F4 help, SAP security note 545334

Description

You want the system to consider your authorization to maintain and display only certain business partner master records in the dialog with the F4 helps for the business partner as well.
Therefore, you only want to be provided master records in the selection list when you are searching a certain business partner which you may process according to your maintained authorizations.
You want this function to be available with F4 helps for the business partner field as well as with the locator search help in the business partner maintenance (Transaction BP) and in the search for business partners in the CIC (here via BAPI BAPI_BUPA_SEARCH).

Available fix and Supported packages

  • SAP_ABA | 50A | 50A
  • SAP_ABA | 620 | 620
  • SAP_ABA 50A | SAPKA50A24 |
  • SAP_ABA 620 | SAPKA62009 |

Affected component

    AP-MD-BP
    Business Partner

CVSS

Score: 0

Exploit

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/545334

TAGS

#BP_DIALOG

How to detect over 4100 vulnerabilities in SAP Systems?

More to explorer

Initiating SAP Penetration Testing

►   Pentest, short for penetration testing, refers to a set of processes that simulate an attacker’s actions to identify security vulnerabilities. Companies

SAP Security Patch Day RedRays

May 2024 SAP Security Patch Day

Vulnerability: Multiple vulnerabilities in SAP CX Commerce SAP Component: CEC-SCC-PLA-PL CVE ID: CVE-2019-17495 CVSS Score: 9.8 CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Category: Program error