VYPR

HCM Travel Management Fiori Apps V2

by SAP

CVEs (1)

  • CVE-2021-27605Apr 13, 2021
    risk 0.00cvss epss 0.01

    SAP's HCM Travel Management Fiori Apps V2, version - 608, does not perform proper authorization check, allowing an authenticated but unauthorized attacker to read personnel numbers of employees, resulting in escalation of privileges. However, the attacker can only read some…