Skip links

Switchable authorization checks for RFCs in GBT integration component GBTRINT in ERP, SAP security note 2213128

Description

This SAP Note describes new switchable authorization checks for RFC function modules in the GBT integration component GBTRINT in ERP.

The corresponding note for the error handling on the GBT side is 2240084. SAP recommends to implement both notes in sync, but it is no technical must. If you do not implement the GBT side note, you will receive no data on the GBT side in case of an authorization failure in ERP, but you will receive no appropriate error message.

Available fix and Supported packages

  • GBTRINT | 100 | 100
  • GBTRINT 100 | SAPK-10012INGBTRINT |

Affected component

    LO-BM-GBT
    Global Batch Traceability

CVSS

Score: 0

Exploit

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/2213128

TAGS

#Authorization
#authorization-check
#GBTRINT
#GBTINT
#/GBTINT/RFC

How to detect over 4100 vulnerabilities in SAP Systems?

More to explorer

Initiating SAP Penetration Testing

►   Pentest, short for penetration testing, refers to a set of processes that simulate an attacker’s actions to identify security vulnerabilities. Companies