Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Missing Authorization Check in SAP NetWeaver and ABAP Platform (SDCCN)
Vulnerability Description
Due to missing authorization check in an RFC enabled function module in transaction SDCCN, an authenticated attacker could generate technical meta-data. This leads to a low impact on integrity. There is no impact on confidentiality or availability
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
授权机制缺失
Vulnerability Title
SAP NetWeaver和ABAP Platform 安全漏洞
Vulnerability Description
SAP NetWeaver和SAP ABAP Platform都是德国思爱普(SAP)公司的产品。SAP NetWeaver是一套面向服务的集成化应用平台。该平台主要为SAP应用程序提供开发和运行环境。SAP ABAP Platform是一个基于 ABAP 的 SAP 解决方案。 SAP NetWeaver和ABAP Platform存在安全漏洞,该漏洞源于缺少授权检查,会导致未认证攻击者生成技术元数据影响完整性。
CVSS Information
N/A
Vulnerability Type
N/A