SAP S/4HANA Finance for (Advanced Payment Management) - versions SAPSCORE 128, S4CORE 107, does not perform necessary authorization checks. A function import could be triggered allowing the attacker to create in-house bank accounts leading to low impact on the confidentiality of the application.
History

Sat, 28 Sep 2024 23:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-285

Sat, 28 Sep 2024 22:30:00 +0000

Type Values Removed Values Added
Description SAP S/4HANA Finance for (Advanced Payment Management) - versions SAPSCORE 128, S4CORE 107, does not perform necessary authorization checks. A function import could be triggered allowing the attacker to create in-house bank accounts leading to low impact on the confidentiality of the application. SAP S/4HANA Finance for (Advanced Payment Management) - versions SAPSCORE 128, S4CORE 107, does not perform necessary authorization checks. A function import could be triggered allowing the attacker to create in-house bank accounts leading to low impact on the confidentiality of the application.
Weaknesses CWE-863

cve-icon MITRE

Status: PUBLISHED

Assigner: sap

Published: 2024-01-09T01:15:17.763Z

Updated: 2024-09-28T22:20:49.895Z

Reserved: 2024-01-01T10:54:59.645Z

Link: CVE-2024-21736

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2024-01-09T02:15:45.593

Modified: 2024-09-28T23:15:12.587

Link: CVE-2024-21736

cve-icon Redhat

No data.