Skip links
Arpine Maghakyan

Arpine Maghakyan

Security Researcher of RedRays.

Switchable authorization checks for RFC in data extraction within CA-MDG-APP-FIN, SAP security note 2185122

Description

This SAP note describes new switchable authorization checks for RFC function modules in CA-MDG-APP-FIN, particularly in data extraction function modules.

Available fix and Supported packages

  • MDG_FND | 731 | 731
  • MDG_FND | 732 | 732
  • MDG_FND | 746 | 746
  • MDG_FND | 747 | 747
  • MDG_FND | 748 | 748
  • MDG_FND | 749 | 749
  • MDG_FND | 800 | 800
  • MDG_FND 731 | SAPK-73116INMDGFND |
  • MDG_FND 746 | SAPK-74610INMDGFND |
  • MDG_FND 732 | SAPK-73215INMDGFND |
  • MDG_FND 747 | SAPK-74711INMDGFND |
  • MDG_FND 748 | SAPK-74808INMDGFND |
  • MDG_FND 749 | SAPK-74902INMDGFND |
  • MDG_FND 800 | SAPK-80001INMDGFND |
  • MDG_FND 731 | SAPK-73117INMDGFND |
  • MDG_FND 749 | SAPK-74903INMDGFND |
  • MDG_FND 800 | SAPK-80002INMDGFND |

Affected component

    CA-MDG-APP-FIN
    MDG Financials

CVSS

Score: 0

Exploit

Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.

URL

https://launchpad.support.sap.com/#/notes/2185122

TAGS

#SACF
#RFC
#authorization
#&160-USMDZ_EXTRACT_REMOTE_F4
#USMDZ_EXTRACT_REMOTE_DATA

More to explorer

SAP Cloud Connector Certificate Validation Issue

Date of Release: February 13, 2024 Advisory ID: CVE-2024-25642 Affected Software: SAP Cloud Connector Versions Affected: 2.15.0 to 2.16.1 Vulnerability Summary:A critical vulnerability,