Skip links
RedRays - Your SAP Security Solution
RedRays SAP Security Team

RedRays SAP Security Team

🔥🔥🔥 Join us for our upcoming training session at Black Hat MEA: "Securing SAP Systems: Expert Insights and Penetration Testing Techniques" 🛡️🔍

Security fix for External Business Partners, SAP security note 1633049

Description

Due to a vulnerability which exists in the location and vendor list search helps, it is possible for a malicious user to retrieve unauthorized locations and vendor lists.

Available fix and Supported packages

  • SRM_SERVER | 500 | 500
  • SRM_SERVER | 550 | 550
  • SRM_SERVER | 600 | 600
  • SRM_SERVER | 700 | 700
  • SRM_SERVER | 701 | 701
  • SRM_SERVER 600 | SAPKIBKU06 |
  • SRM_SERVER 500 | SAPKIBKS18 |
  • SRM_SERVER 550 | SAPKIBKT20 |
  • SRM_SERVER 700 | SAPKIBKV12 |
  • SRM_SERVER 701 | SAPK-70107INSRMSRV |

Affected component

    SRM-EBP-ADM-XBP
    External Business Partner

CVSS

Score: 0

Exploit

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/1633049

TAGS

#DO’s
#security
#external-business-partner
#location
#vendor-list.

How to detect over 4100 vulnerabilities in SAP Systems?

More to explorer