SAP S/4HANA Finance for (Advanced Payment Management) - versions SAPSCORE 128, S4CORE 107, does not perform necessary authorization checks. A function import could be triggered allowing the attacker to create in-house bank accounts leading to low impact on the confidentiality of the application.
Metrics
Affected Vendors & Products
References
History
Sat, 28 Sep 2024 23:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-285 |
Sat, 28 Sep 2024 22:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | SAP S/4HANA Finance for (Advanced Payment Management) - versions SAPSCORE 128, S4CORE 107, does not perform necessary authorization checks. A function import could be triggered allowing the attacker to create in-house bank accounts leading to low impact on the confidentiality of the application. | SAP S/4HANA Finance for (Advanced Payment Management) - versions SAPSCORE 128, S4CORE 107, does not perform necessary authorization checks. A function import could be triggered allowing the attacker to create in-house bank accounts leading to low impact on the confidentiality of the application. |
Weaknesses | CWE-863 |
MITRE
Status: PUBLISHED
Assigner: sap
Published: 2024-01-09T01:15:17.763Z
Updated: 2024-09-28T22:20:49.895Z
Reserved: 2024-01-01T10:54:59.645Z
Link: CVE-2024-21736
Vulnrichment
No data.
NVD
Status : Modified
Published: 2024-01-09T02:15:45.593
Modified: 2024-09-28T23:15:12.587
Link: CVE-2024-21736
Redhat
No data.