First published: Tue Apr 14 2020(Updated: )
SAP S/4HANA (Financial Products Subledger), version 100, uses an incorrect authorization object in some reports. Although the affected reports are protected with other authorization objects, exploitation of the vulnerability would allow an authenticated attacker to view, change, or delete data, thereby preventing the proper segregation of duties in the system.
Credit: cna@sap.com
Affected Software | Affected Version | How to fix |
---|---|---|
Sap S\/4hana Financial Products Subledger | =100 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.