Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1418848-3)
SAP Support Packages
(SAPKB70022, SAPKB70107, SAPKB70204, SAPKB71010, SAPKB71105, SAPKB72003)
Описание
This problem is caused by a missing authorization check using S_RFC_ADM if the report RSRFCPIN
is called with the "Authorization Check" input parameter or if the report RSRFCCHK
is called.
is called with the "Authorization Check" input parameter or if the report RSRFCCHK
is called.
Как исправить
Import the relevant Support Package or implement the correction instructions. After you implement these corrections, RFC pings with a check of the logon data in the target system are protected by an authorization check with the authorization object S_RFC_ADM.
Ссылки