VYPR
Unrated severityNVD Advisory· Published Jan 8, 2019· Updated Aug 4, 2024

CVE-2019-0243

CVE-2019-0243

Description

Under some circumstances, masterdata maintenance in SAP BW/4HANA (fixed in DW4CORE version 1.0 (SP08)) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.

Affected products

2
  • SAP/BW4HANAllm-fuzzy
    Range: < 1.0 SP08
  • SAP SE/SAP BW/4HANA (DW4CORE)v5
    Range: < 1.0 (SP08)

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.