Skip links

Switchable Authorization checks for RFC BCA_DIM_WRITE_OFF in Loans (FI-CAX-FS), SAP security note 2531131

Description

S_RFC authorization checks are not sufficient to ensure secure execution of RFC function modules covered by this SAP Note. New switchable authorization checks have been implemented for RFC function modules in FI-CAX-FS.

Available fix and Supported packages

  • FI-CAX | 602 | 602
  • FI-CAX | 603 | 603
  • FI-CAX | 604 | 604
  • FI-CAX | 605 | 605
  • FI-CAX | 606 | 606
  • FI-CAX | 616 | 616
  • FI-CAX | 617 | 617
  • FI-CAX | 618 | 618
  • FI-CAX | 800 | 800
  • FI-CAX | 801 | 801
  • FI-CAX | 802 | 802
  • FI-CAX 602 | SAPK-60220INFICAX |
  • FI-CAX 603 | SAPK-60319INFICAX |
  • FI-CAX 604 | SAPK-60420INFICAX |
  • FI-CAX 605 | SAPK-60517INFICAX |
  • FI-CAX 606 | SAPK-60620INFICAX |
  • FI-CAX 616 | SAPK-61612INFICAX |
  • FI-CAX 617 | SAPK-61715INFICAX |
  • FI-CAX 802 | SAPK-80201INFICAX |
  • FI-CAX 618 | SAPK-61809INFICAX |
  • FI-CAX 800 | SAPK-80006INFICAX |
  • FI-CAX 801 | SAPK-80104INFICAX |

Affected component

    FI-CAX-FS
    Integration Banking Services

CVSS

Score: 0

Exploit

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/2531131

TAGS

#SACF
#RFC
#authorization
#FI-CAX-FS
#Write-Off
#BCA_DIM_WRITE_OFF
#FS_TB_WRITEOFF

How to detect over 4100 vulnerabilities in SAP Systems?

More to explorer

Initiating SAP Penetration Testing

►   Pentest, short for penetration testing, refers to a set of processes that simulate an attacker’s actions to identify security vulnerabilities. Companies