SAP NetWeaver AS ABAP (Banking Services), versions - 710, 711, 740, 750, 751, 752, 75A, 75B, 75C, 75D, 75E, does not perform necessary authorization checks for an authenticated user due to Missing Authorization Check, allowing wrong and unexpected change of individual conditions by a malicious user leading to wrong prices.
2020-06-10T13:15:18.477
2024-11-21T05:35:24.910
Modified
CVSSv3.1: 6.5 (MEDIUM)
AV:N/AC:L/Au:S/C:N/I:P/A:N
8.0
2.9
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | sap | netweaver_application_server_abap | 75a | Yes |
Application | sap | netweaver_application_server_abap | 75b | Yes |
Application | sap | netweaver_application_server_abap | 75c | Yes |
Application | sap | netweaver_application_server_abap | 75d | Yes |
Application | sap | netweaver_application_server_abap | 75e | Yes |
Application | sap | netweaver_application_server_abap | 710 | Yes |
Application | sap | netweaver_application_server_abap | 711 | Yes |
Application | sap | netweaver_application_server_abap | 740 | Yes |
Application | sap | netweaver_application_server_abap | 750 | Yes |
Application | sap | netweaver_application_server_abap | 751 | Yes |
Application | sap | netweaver_application_server_abap | 752 | Yes |