SAP CRM WebClient does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. This could allow an attacker to access some sensitive information.
2024-07-09T05:15:11.823
2024-11-21T09:23:21.793
Modified
CVSSv3.1: 4.3 (MEDIUM)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | sap | customer_relationship_management_s4fnd | 102 | Yes |
| Application | sap | customer_relationship_management_s4fnd | 103 | Yes |
| Application | sap | customer_relationship_management_s4fnd | 104 | Yes |
| Application | sap | customer_relationship_management_s4fnd | 105 | Yes |
| Application | sap | customer_relationship_management_s4fnd | 106 | Yes |
| Application | sap | customer_relationship_management_s4fnd | 107 | Yes |
| Application | sap | customer_relationship_management_s4fnd | 108 | Yes |
| Application | sap | customer_relationship_management_webclient_ui | 701 | Yes |
| Application | sap | customer_relationship_management_webclient_ui | 731 | Yes |
| Application | sap | customer_relationship_management_webclient_ui | 746 | Yes |
| Application | sap | customer_relationship_management_webclient_ui | 747 | Yes |
| Application | sap | customer_relationship_management_webclient_ui | 748 | Yes |
| Application | sap | customer_relationship_management_webclient_ui | 800 | Yes |
| Application | sap | customer_relationship_management_webclient_ui | 801 | Yes |