Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Insecure Direct Object Reference (IDOR) vulnerability in S4 HANA (Manage checkbook apps)
Vulnerability Description
The OData service of the S4 HANA (Manage checkbook apps) - versions 102, 103, 104, 105, 106, 107, allows an attacker to change the checkbook name by simulating an update OData call.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
通过用户控制密钥绕过授权机制
Vulnerability Title
SAP S4 HANA 安全漏洞
Vulnerability Description
SAP S4 HANA是德国思爱普(SAP)公司的一个用于提高数据库效率的软件。 SAP S4 HANA (Manage checkbook apps)102、103、104、105、106、107版本存在安全漏洞,该漏洞源于允许攻击者通过模拟更新 OData 调用来更改checkbook 名称。
CVSS Information
N/A
Vulnerability Type
N/A