High severity8.8NVD Advisory· Published Sep 11, 2018· Updated Jun 17, 2026
CVE-2018-2461
CVE-2018-2461
Description
Missing authorization check in SAP HCM Fiori "People Profile" (GBX01 HR version 6.0) for an authenticated user which may result in an escalation of privileges.
Affected products
2- Range: =6.0
- SAP/GBX01 HRv5Range: = 6.0
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/105327nvdThird Party AdvisoryVDB Entry
- launchpad.support.sap.comnvdPermissions RequiredVendor Advisory
- wiki.scn.sap.com/wiki/pages/viewpage.actionnvdVendor Advisory
News mentions
0No linked articles in our index yet.