Description
This security note has been updated. For more detailed information, see Security Note 2201881.
The PLM-CFO can be abused by a malicious user allowing them to modify displayed application content without authorization and to potentially obtain authentication information from other legitimate users.
Available fix and Supported packages
- CPROJECTS | 310_620 | 310_640
- CPRXRPM | 400 | 400
- CPRXRPM | 450_700 | 450_700
- CPRXRPM | 500_702 | 500_702
- CPROJECTS 310_620 | SAPK-31222INCPROJECT |
- CPROJECTS 310_640 | SAPK-31422INCPROJECT |
- CPRXRPM 450_700 | SAPK-45014INCPRXRPM |
- CPRXRPM 400 | SAPK-40022INCPRXRPM |
Affected component
- PLM-CFO
Collaboration Folders
CVSS
Score: 0
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/1694057