← back
CVE-2018-2455

CVE-2018-2455

EPSS 1.3%
SAP Enterprise Financial Services, versions 6.05, 6.06, 6.16, 6.17, 6.18, 8.0 (in business function EAFS_BCA_BUSOPR_SEPA) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
Affected products
SAP · SAP Enterprise Financial Services

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://launchpad.support.sap.com/#/notes/2646067https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499356993http://www.securityfocus.com/bid/105320