Description
A malicious user can execute functions in BW-BCT-PLA-MCB without authentication and authorization, or BW-BCT-PLA-MCB can be abused by an attacker, allowing them to modify displayed application content without authorization and to potentially obtain authentication information from other legitimate users.
Available fix and Supported packages
- BI_CONT | 705 | 705
- BI_CONT | 706 | 706
- BI_CONT | 707 | 707
- BI_CONT | 735 | 735
- BI_CONT | 736 | 736
- BI_CONT | 746 | 746
- BI_CONT 736 | SAPK-73603INBICONT |
- BI_CONT 746 | SAPK-74603INBICONT |
- BI_CONT 706 | SAPK-70605INBICONT |
- BI_CONT 735 | SAPK-73507INBICONT |
- BI_CONT 705 | SAPK-70508INBICONT |
Affected component
- BW-BCT-PLA-MCB
BW only – PLM Maintenance Cost Budgeting
CVSS
Score: 0
Exploit
Exploit is not available.
For detailed information please contact the mail [email protected].
URL
https://launchpad.support.sap.com/#/notes/1706527
