Skip links
Arpine Maghakyan

Arpine Maghakyan

Security Researcher of RedRays.

Saved data may be disclosed and changed, SAP security note 1469707

Description

An attacker can use an RFC module to change, display or delete any data by making specific entries.

Available fix and Supported packages

  • SCM | 500 | 500
  • SCM | 510 | 510
  • SCM | 700 | 700
  • SCM | 701 | 701
  • SCM 500 | SAPKY50018 |
  • SCM 510 | SAPKY51014 |
  • SCM 700 | SAPKY70007 |
  • SCM 701 | SAPKY70102 |

Affected component

    SCM-FRE-TSM
    Time Series Management

CVSS

Score: 0

Exploit

Exploit is not available.
For detailed information please contact the mail [email protected]

URL

https://launchpad.support.sap.com/#/notes/1469707

TAGS

#SQL-injection
#database

More to explorer