VYPR
Unrated severityNVD Advisory· Published Apr 24, 2020· Updated Aug 4, 2024

CVE-2020-6212

CVE-2020-6212

Description

Egypt localized withholding tax reports Clearing of Liabilities and Remittance Statement and Summary in SAP ERP (versions 618, 730, EAPPLGLO 607) and S/4 HANA (versions 100, 101, 102, 103, 104) do not perform necessary authorization checks for an authenticated user, allowing reading or modification of some tax reports, due to Missing Authorization Check.

Affected products

4
  • SAP/S/4HANAllm-fuzzy
    Range: = 100, 101, 102, 103, 104
  • Jerryhanjj/ERPllm-fuzzy
    Range: = 618, 730
  • SAP SE/SAP ERPv5
    Range: < 618
  • SAP SE/SAP S/4 HANAv5
    Range: < 100

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.