Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Odata meta-data tampering in SAP S4CORE entity
Vulnerability Description
SAP S4CORE OData meta-data property is vulnerable to data tampering, due to which entity set could be externally modified by an attacker causing low impact on integrity of the application. Confidentiality and availability is not impacted.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
对假设不可变Web参数的外部可控制
Vulnerability Title
SAP S4CORE 安全漏洞
Vulnerability Description
SAP S4CORE是德国思爱普(SAP)公司的一个管理采购合同应用程序。 SAP S4CORE存在安全漏洞,该漏洞源于数据篡改,可能导致实体集被修改并破坏应用完整性。
CVSS Information
N/A
Vulnerability Type
N/A