Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
[Multiple CVEs] Multiple vulnerabilities in SAP CRM (WebClient UI)
Vulnerability Description
SAP CRM WebClient does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. This could allow an attacker to access some sensitive information.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
授权机制缺失
Vulnerability Title
SAP CRM 安全漏洞
Vulnerability Description
SAP CRM是德国思爱普(SAP)公司的一个客户关系管理系统。 SAP CRM存在安全漏洞,该漏洞源于没有对经过身份验证的用户执行必要的授权检查,导致权限升级,这可能允许攻击者访问一些敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A