SAP Shared Service Framework does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. On successful exploitation, an attacker can cause a high impact on confidentiality of the application.
2024-08-13T04:15:10.837
2024-09-12T13:43:27.507
Analyzed
CVSSv3.1: 6.5 (MEDIUM)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | sap | shared_service_framework | sap_bs_fnd_702 | Yes |
| Application | sap | shared_service_framework | sap_bs_fnd_731 | Yes |
| Application | sap | shared_service_framework | sap_bs_fnd_746 | Yes |
| Application | sap | shared_service_framework | sap_bs_fnd_747 | Yes |
| Application | sap | shared_service_framework | sap_bs_fnd_748 | Yes |