Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Information Disclosure in SAP Supplier Relationship Management
Vulnerability Description
SAP Supplier Relationship Management -versions 600, 602, 603, 604, 605, 606, 616, 617, allows an unauthorized attacker to discover information relating to SRM within Vendor Master Data for Business Partners replication functionality.This information could be used to allow the attacker to specialize their attacks against SRM.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
Vulnerability Type
关键功能的认证机制缺失
Vulnerability Title
SAP Supplier Relationship Management 信息泄露漏洞
Vulnerability Description
SAP Supplier Relationship Management(SRM)是德国思爱普(SAP)公司的一套供应商关系管理解决方案。该产品实现了企业内以及供应商之间采购和购置流程的自动化,并提供发票开具等功能。 SAP Supplier Relationship Management 600、602、603、604、605、606、616、617版本存在信息泄露漏洞,该漏洞源于允许未经授权的攻击者在业务合作伙伴的供应商主数据复制功能中发现与 SRM 相关的信息。
CVSS Information
N/A
Vulnerability Type
N/A