3 results (0.001 seconds)

CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2020-6311

https://notcve.org/view.php?id=CVE-2020-6311

09 Sep 2020 — Banking services from SAP 9.0 (Bank Analyzer), version - 500, and SAP S/4HANA for financial products subledger, version � 100, does not correctly perform necessary authorization checks for an authenticated user due to Improper Authorization checks, that may cause a system administrator to create incorrect authorization proposals. This may result in privilege escalation and may expose restricted banking data. Los Servicios Banking de SAP (Bank Analyzer), versión - 500, y SAP S/4HANA para el libro mayor de pr... • https://launchpad.support.sap.com/#/notes/2951325 • CWE-285: Improper Authorization CWE-863: Incorrect Authorization •

CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0

CVE-2020-6233

https://notcve.org/view.php?id=CVE-2020-6233

14 Apr 2020 — SAP S/4 HANA (Financial Products Subledger and Banking Services), versions - FSAPPL 400, 450, 500 and S4FPSL 100, allows an authenticated user to run an analysis report due to Missing Authorization Check, resulting in slowing the system. SAP S/4 HANA (Financial Products Subledger and Banking Services), versiones - FSAPPL 400, 450, 500 y S4FPSL 100, permite a un usuario autenticado ejecutar un reporte de análisis debido a una Falta de Comprobación de Autorización, resultando en una desaceleración del sistema... • https://launchpad.support.sap.com/#/notes/2904796 • CWE-862: Missing Authorization •

CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0

CVE-2019-0276

https://notcve.org/view.php?id=CVE-2019-0276

12 Mar 2019 — Banking services from SAP 9.0 (FSAPPL version 5) and SAP S/4HANA Financial Products Subledger (S4FPSL, version 1) performs an inadequate authorization check for an authenticated user, potentially resulting in escalation of privileges. Los servicios bancarios de SAP 9.0 (FSAPPL, versión 5) y SAP S/4HANA Financial Products Subledger (S4FPSL, versión 1) realizan una comprobación de autorización inadecuada para un usuario autenticado, conduciendo a un escalado de privilegios. • http://www.securityfocus.com/bid/107353 • CWE-863: Incorrect Authorization •