Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:M/AU:S/C:P/I:P/A:PSAP)
Производитель ПО
Наименование ПО
SAP Notes
(1776984-5)
SAP Support Packages
(SAPKB70029, SAPKB70113, SAPKB70213, SAPKB71016, SAPKB71111, SAPKB72008, SAPKB73009, SAPKB73107)
Описание
A function in component SAP_BASIS does not contain authorization checks for checking an authenticated user's authorization to access some of the functions.of different SAP components or products. Thismay result in undesired system behavior.
Как исправить
Apply the correction instructions of this security note.Only apply the code changes. Any other manual changes possibly suggested by the system are not neededFurther informationThe correction instruction disables the coding of the function, and instead, an error message is returned.In case the function module is used by customers, the customer can (in order to provide compatibility) make a modification to the function module and uncomment the coding on his own responsibility.From the Release Netweaver 740 (Component SAP_BASIS 740) and higher the function was removed by SAP.
Ссылки