Description
A malicious user can exploit Entitlements Management and use specially crafted inputs to execute arbitrary database commands to retrieve, modify, or remove data persisted by the system
Available fix and Supported packages
- BBPCRM | 500 | 500
- BBPCRM | 510 | 510
- BBPCRM | 520 | 520
- BBPCRM | 600 | 600
- BBPCRM | 700 | 700
- BBPCRM | 701 | 701
- BBPCRM 500 | SAPKU50017 |
- BBPCRM 600 | SAPKU60008 |
- BBPCRM 701 | SAPKU70102 |
- BBPCRM 700 | SAPKU70008 |
- BBPCRM 520 | SAPKU52011 |
Affected component
- CRM-EM
Entitlement Management
CVSS
Score: 0
Exploit
Exploit is not available.
For detailed information please contact the mail [email protected].
URL
https://launchpad.support.sap.com/#/notes/1480653