Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Missing Authorization check in SAP S4/HANA (OData meta-data property)
Vulnerability Description
SAP S4CORE OData meta-data property allows an authenticated attacker to access restricted information due to missing authorization check. This could cause a low impact on confidentiality but integrity and availability of the application are not impacted.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
对假设不可变Web参数的外部可控制
Vulnerability Title
SAP S4CORE 安全漏洞
Vulnerability Description
SAP S4CORE是德国思爱普(SAP)公司的一个管理采购合同应用程序。 SAP S4CORE存在安全漏洞,该漏洞源于缺少授权检查,可能导致信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A