Skip links

Update #1 for Security Note 1512352, SAP security note 1555924

Description

Correction instructions for the directory traversal vulnerability described in Security Note 1512352 must be corrected for all releases. The corrected correction instructions have been added to this note.

Even though you have maintained Customizing for the logical file names for the input file and output file of the report RCCLBI03, the physical file names that are assigned are not identified as valid.

Available fix and Supported packages

  • SAP_APPL | 31I | 31I
  • SAP_APPL | 40B | 40B
  • SAP_APPL | 45B | 45B
  • SAP_APPL | 46B | 46B
  • SAP_APPL | 46C | 46C
  • SAP_ABA | 620 | 620
  • SAP_ABA | 640 | 640
  • SAP_ABA | 700 | 702
  • SAP_ABA | 710 | 711
  • SAP_ABA | 730 | 730
  • SAP_APPL 31I | SAPKH31IB9 |
  • SAP_APPL 40B | SAPKH40B89 |
  • SAP_APPL 45B | SAPKH45B67 |
  • SAP_APPL 46B | SAPKH46B62 |
  • SAP_APPL 46C | SAPKH46C62 |
  • SAP_ABA 620 | SAPKA62070 |
  • SAP_ABA 710 | SAPKA71012 |
  • SAP_ABA 711 | SAPKA71107 |
  • SAP_ABA 640 | SAPKA64028 |
  • SAP_ABA 700 | SAPKA70024 |
  • SAP_ABA 701 | SAPKA70109 |
  • SAP_ABA 730 | SAPKA73003 |
  • SAP_ABA 702 | SAPKA70208 |

Affected component

    CA-CL
    Classification

CVSS

Score: 0

Exploit

Exploit is not available.
For detailed information please contact the mail [email protected]

URL

https://launchpad.support.sap.com/#/notes/1555924

TAGS

#Directory-traversal
#update
#Update-Note