漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Missing Authorization check in SAP Business Warehouse (Service API)
Vulnerability Description
Due to a Missing Authorization Check in SAP Business Warehouse (Service API), an authenticated attacker could perform unauthorized actions via an affected RFC function module. Successful exploitation could enable unauthorized configuration and control changes, potentially disrupting request processing and causing denial of service. This results in low impact on integrity and high impact on availability, while confidentiality remains unaffected.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H
Vulnerability Type
授权机制缺失
Vulnerability Title
SAP Business Warehouse 安全漏洞
Vulnerability Description
SAP Business Warehouse是德国思爱普(SAP)公司的用于执行业务流程的关键组件,它允许用户设计、实施和管理业务流程,确保流程的合规性,并通过自动化减少手动操作的需要。 SAP Business Warehouse存在安全漏洞,该漏洞源于缺少授权检查,可能导致未经授权的配置和控制更改,造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A