Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:M/AU:S/C:P/I:P/A:PSAP)
Производитель ПО
Наименование ПО
SAP Notes
(1673016-5)
SAP Support Packages
(SAPK-60211INEAAPPL, SAPK-60310INEAAPPL, SAPK-60411INEAAPPL, SAPK-60508INEAAPPL, SAPK-60603INEAAPPL, SAPKGPAA34, SAPKGPAB23, SAPKGPAC27, SAPKGPAD21)
Описание
Reason:Dangerous Goods Management does not contain authorization checks for checking an authenticated user's authorization to access some of its functions. This may result in undesired system behavior.PrerequisitesFor information about the validity of the corrections, see the correction instructions.
Как исправить
This correction ensures that the authorization for the transaction for phrase processing is checked.The "Reference to Support Packages" section specifies the Support Packages that contain the corrections.Alternatively, you can implement the attached correction instructions.------------------------------------------------------------------------|Manual Post-Implement. |------------------------------------------------------------------------|VALID FOR ||Software Component EA-APPL SAP R/3 Enterpr...|| Release 110 SAPKGPAA15 - SAPKGPAA33 || Release 200 SAPKGPAB10 - SAPKGPAB22 || Release 500 SAPKGPAC11 - SAPKGPAC26 |------------------------------------------------------------------------
Call transaction SE51.
Enter the program SAPLDG95 and screen number 1010.
Select "Element list" and choose "Change".
Go to the "Mod. groups / functions" tab page.
Go to the element %#AUTOTEXT001, type "Push" (last element in the list).
Enter the value PHR in the field "Group 1".
Save and activate your changes.
Call transaction SE51.
Enter the program SAPLDG95 and screen number 1010.
Select "Element list" and choose "Change".
Go to the "Mod. groups / functions" tab page.
Go to the element %#AUTOTEXT001, type "Push" (last element in the list).
Enter the value PHR in the field "Group 1".
Save and activate your changes.
Ссылки