N/A

ABAP Server of SAP NetWeaver and ABAP Platform fail to perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has been corrected in the following versions: KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.74, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73, 7.74, 8.04, KERNEL 7.21, 7.45, 7.49, 7.53, 7.73, 7.74, 7.75, 8.04.

N/A

N/A

SAP Netweaver ABAP 权限许可和访问控制问题漏洞

SAP Netweaver是德国思爱普（SAP）公司的一套面向服务的集成化应用平台。该平台主要为SAP应用程序提供开发和运行环境。ABAP是一款运行于NetWeaver中且基于ABAP高级编程语言的应用服务器。 SAP NetWeaver ABAP Server中存在权限许可和访问控制漏洞，该漏洞源于服务器对经过身份验证的用户进行授权检查。远程攻击者可利用该漏洞提升权限。以下产品和版本受到影响：SAP NetWeaver ABAP Platform KRNL32NUC 7.21版本，7.21EXT版本，7

N/A

N/A