Description
Possible security issues have been found, from type “Missing Authority Check for Call Transaction”.
This ABAP Statement does not check for the authorization to start the transaction. So an unauthorized user is also allowed to use the transaction.
Available fix and Supported packages
- SCM | 700 | 700
- SCM 700 | SAPKY70006 |
Affected component
- AP-PPE-SCM
Product and Process Engineering
CVSS
Score: 0
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/1425215