Potential disclosure of authentication information, SAP security note 1437894

Description

The POS Workbench / POS Data Management can be abused by a malicious user allowing them to obtain authentication information from other legitimate users.

Available fix and Supported packages

BI_CONT | 330 | 330
BI_CONT | 351 | 351
BI_CONT | 352 | 352
BI_CONT | 353 | 353
BI_CONT | 701 | 701
BI_CONT | 702 | 702
BI_CONT | 703 | 703
BI_CONT | 704 | 704
BI_CONT | 705 | 705
BI_CONT | 711 | 711
BI_CONT | 724 | 724
BI_CONT 353 | SAPKIBIFR0 |
BI_CONT 704 | SAPK-70407INBICONT |
BI_CONT 705 | SAPK-70501INBICONT |

Affected component

CVSS

Score: 0

Exploit

Exploit is not available.
For detailed information please contact the mail [email protected].

URL

https://launchpad.support.sap.com/#/notes/1437894

Arpine Maghakyan

Potential disclosure of authentication information, SAP security note 1437894

Description

Available fix and Supported packages

Affected component

CVSS

Exploit

URL

TAGS

#Security-Update
#Cross-Site-Scripting
#Cross-Domain-Attack
#XSS
#CSS

More to explorer

Exploring P4 Protocol: Usage, Implementation, and CVE-2021-37535

AI-powered Password Testing for ABAP stack

SAP Security Patch Day – May 2023

RedRays Offers Support to Startups Listing on SAP Store

Arpine Maghakyan

Potential disclosure of authentication information, SAP security note 1437894

Description

Available fix and Supported packages

Affected component

CVSS

Exploit

URL

TAGS

#Security-Update#Cross-Site-Scripting#Cross-Domain-Attack#XSS#CSS

More to explorer

Exploring P4 Protocol: Usage, Implementation, and CVE-2021-37535

AI-powered Password Testing for ABAP stack

SAP Security Patch Day – May 2023

RedRays Offers Support to Startups Listing on SAP Store

#Security-Update
#Cross-Site-Scripting
#Cross-Domain-Attack
#XSS
#CSS