Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1414059-3)
Описание
A security error is corrected in the delivered BW functions. The security hole allows an attacker with access to the BW back-end system to control the application server and the database. As a result, users with authorization to execute programs may then make undetected data changes. Consequently, the stability of the system can no longer be guaranteed and privacy and data security may be endangered.
The attached corrections remove the critical source code without substitution.
Implementing this note does not put the system in question at risk. Therefore, you should implement the attached corrections immediately.
The attached corrections remove the critical source code without substitution.
Implementing this note does not put the system in question at risk. Therefore, you should implement the attached corrections immediately.
Как исправить
The attached corrections apply to all patch levels of BW Releases 2.X, 3.X, and 7.X.
Ссылки