Skip links

Disclosing information about table contents in IS-M/SD, SAP security note 1591438

Description

A malicious user can obtain information regarding sensitive billing data. This information could be used to allow the malicious user to specialize their attacks against the contents of these tables.

Available fix and Supported packages

  • IS-M | 600 | 600
  • IS-M | 602 | 602
  • IS-M | 603 | 603
  • IS-M | 604 | 604
  • IS-M | 605 | 605
  • IS-M 600 | SAPK-60020INISM |
  • IS-M 602 | SAPK-60210INISM |
  • IS-M 603 | SAPK-60309INISM |
  • IS-M 604 | SAPK-60410INISM |
  • IS-M 605 | SAPK-60505INISM |

Affected component

    IS-M-SD-PS-BL
    Billing

CVSS

Score: 0

Exploit

Exploit is not available.
For detailed information please contact the mail [email protected]

URL

https://launchpad.support.sap.com/#/notes/1591438

TAGS

#Information-disclosure
#IS-M-SD-PS-BL