Description
UPDATE 13th August 2019: This note has been re-released with the updated ‘Support packages’. We extended the validity of the manual instructions for SAP_BASIS 702 release from SP 15 to SP 18.
UPDATE 11th March 2019 : This note has been re-released with manual correction updates, additionally CVSS information is also made available.
This SAP note describes new switchable authorization checks for RFC function modules in Student Life cycle Management application.
Available fix and Supported packages
- IS-PS-CA | 600 | 600
- IS-PS-CA | 602 | 602
- IS-PS-CA | 603 | 603
- IS-PS-CA | 604 | 604
- IS-PS-CA | 605 | 605
- IS-PS-CA | 606 | 606
- IS-PS-CA | 616 | 616
- IS-PS-CA | 617 | 617
- IS-PS-CA 600 | SAPK-60026INISPSCA |
- IS-PS-CA 602 | SAPK-60216INISPSCA |
- IS-PS-CA 606 | SAPK-60613INISPSCA |
- IS-PS-CA 616 | SAPK-61608INISPSCA |
- IS-PS-CA 617 | SAPK-61706INISPSCA |
- IS-PS-CA 600 | SAPK-60027INISPSCA |
- IS-PS-CA 602 | SAPK-60217INISPSCA |
- IS-PS-CA 603 | SAPK-60316INISPSCA |
- IS-PS-CA 604 | SAPK-60417INISPSCA |
- IS-PS-CA 605 | SAPK-60514INISPSCA |
- IS-PS-CA 606 | SAPK-60614INISPSCA |
- IS-PS-CA 616 | SAPK-61609INISPSCA |
- IS-PS-CA 617 | SAPK-61707INISPSCA |
Affected component
- IS-HER-CM
Student Lifecycle Management
CVSS
Score: 6.3
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/2030144