By exploiting this vulnerability an unauthenticated attacker could access and modify any information indexed by the SAP system.
Please fill out the form to download the security advisory.
Further Reading
Open Redirect in SAP HANA XSA UAA Server
Open Redirect in SAP HANA XSA UAA Server Impact on Business The open redirect vulnerability allows remote attackers to redirect users to arbitrary sites and conduct phishing attacks. The phishers may then steal victim’s credentials or other important data that can be used in other exploitation chains. This has limited impact on the confidentiality, integrity and availability of the…
Denial of service (DOS) in SAP NetWeaver and ABAP platform
Denial of service (DOS) in SAP NetWeaver and ABAP platform! Impact on Business A remote attacker can block all work processes of an SAP System running on SAP NetWeaver AS ABAP. This has a very high negative impact on the availability of the system and its business applications. Vulnerability Details A certain remote-enabled function module, from /SDF/EWA…
Missing Authorization Check in SAP Production and Revenue Accounting
Missing Authorization Check in SAP Production and Revenue Accounting Impact on Business Successful exploitation of the vulnerability gives the attacker useful information that can be used in espionage campaigns or in building different exploitation chains based on it. This has a high impact on the confidentiality of the system and its business applications. Vulnerability Details A certain remote-enabled…