漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Missing Authorization Check in SAP S/4HANA (Manage Processing Rules - For Bank Statement)
Vulnerability Description
SAP Manage Processing Rules (For Bank Statement) allows an attacker with basic privileges to edit shared rules of any user by tampering the request parameter. Due to missing authorization check, the attacker can edit rules that should be restricted, compromising the integrity of the application.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
授权机制缺失
Vulnerability Title
SAP Manage Processing Rules 安全漏洞
Vulnerability Description
SAP Manage Processing Rules是德国思爱普(SAP)公司的一个管理系统。 SAP Manage Processing Rules存在安全漏洞,该漏洞源于授权检查不足,可能导致编辑共享规则。
CVSS Information
N/A
Vulnerability Type
N/A