Description
An attacker can exploit the program RSTRESNC and use specially crafted inputs to modify database commands, resulting in the modification of data persisted by the system.
Available fix and Supported packages
- SAP_APPL | 31I | 31I
- SAP_APPL | 40A | 40B
- SAP_APPL | 45A | 45B
- SAP_BASIS | 46A | 46D
- SAP_BASIS | 610 | 640
- SAP_BASIS | 700 | 702
- SAP_BASIS | 710 | 730
- SAP_BASIS | 731 | 731
- SAP_BASIS | 800 | 802
Affected component
- BC-UPG-TLS-TLA
Upgrade tools for ABAP
CVSS
Score: 0
Exploit
Exploit is not available.
For detailed information please contact the mail [email protected]
URL
https://launchpad.support.sap.com/#/notes/1628606