Description
SAP Enterprise Financial Services, versions 6.05, 6.06, 6.16, 6.17, 6.18, 8.0 (in business function EAFS_BCA_BUSOPR_2) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| SAP | SAP Enterprise Financial Services | affected |
|
Configuration 1 [-]
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2018-14309 | SAP Enterprise Financial Services, versions 6.05, 6.06, 6.16, 6.17, 6.18, 8.0 (in business function EAFS_BCA_BUSOPR_2) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. |
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: sap
Published:
Updated: 2024-08-05T04:21:33.882Z
Reserved: 2017-12-15T00:00:00.000Z
Link: CVE-2018-2454
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-09-11T15:29:00.843
Modified: 2024-11-21T04:03:50.597
Link: CVE-2018-2454
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses