Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Notes
(1457125-3)
SAP Support Packages
(SAPK-31219INCPROJECT, SAPK-31419INCPROJECT, SAPK-40019INCPRXRPM, SAPK-45010INCPRXRPM, SAPK-50002INCPRXRPM)
Описание
The security relevant system profile parameter icf/set_HTTPonly_flag_on_cookies was activated for the ABAP application server (icf/set_HTTPonly_flag_on_cookies = 0). The HttpOnly flag will be set for system-cookies as an effect of this parameter.
The fileupload and download functionality is not working in secured environment. Note 1420203 has to be implemented!
The fileupload and download functionality is not working in secured environment. Note 1420203 has to be implemented!
Как исправить
Apply the correction available with the Note
Ссылки