Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Missing authorization check in SAP Student Life Cycle Management (SLcM)
Vulnerability Description
An authenticated attacker with high privilege can use functions of SLCM transactions to which access should be restricted. This may result in an escalation of privileges causing low impact on integrity of the application.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
Vulnerability Type
授权机制缺失
Vulnerability Title
SAP Student Life Cycle Management 安全漏洞
Vulnerability Description
SAP Student Life Cycle Management是德国思爱普(SAP)公司的一个学生生命周期管理系统。 SAP Student Life Cycle Management存在安全漏洞,该漏洞源于具有高权限的经过身份验证的攻击者可以使用应限制访问的 SLCM 事务功能。
CVSS Information
N/A
Vulnerability Type
N/A