Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:M/AU:S/C:P/I:P/A:P)
Производитель ПО
Наименование ПО
SAP Notes
(1558010-3)
SAP Support Packages
(SAPK-60020INISOIL, SAPK-60210INISOIL, SAPK-60309INISOIL, SAPK-60410INISPRA, SAPK-60504INISPRA, SAPKI47060, SAPKI4C140)
Описание
Due to the function being a remote enabled function, there was a possibility of a user being able to remotely execute some commands via this function.
Как исправить
Since this function is no more used in the PRA revenue area, the function module in question has been deleted. The deletion would be available in our next support pack and would eliminate the security risk arising due to this function.
This note cannot be applied via SNOTE (Note assistant), for applying this note manually, kindly see step by step manual procedure in the attached document 'Manual_Steps.zip'.
This note cannot be applied via SNOTE (Note assistant), for applying this note manually, kindly see step by step manual procedure in the attached document 'Manual_Steps.zip'.
Ссылки