Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP HANA
(SAP HANA)
Описание
The MODELING role contains the predefined analytic privilege
_SYS_BI_CP_ALL. This analytic privilege potentially allows a user to access all
the data in activated views that are protected by XML-based analytic privileges, regardless of any other analytic privileges that apply. Although the user
must also have the SELECT object privilege on the views to actually be able to
access data, the _SYS_BI_CP_ALL analytic privilege should not be granted to
users, particularly in production systems. For this reason, the MODELING role
should only be used as a template.
_SYS_BI_CP_ALL. This analytic privilege potentially allows a user to access all
the data in activated views that are protected by XML-based analytic privileges, regardless of any other analytic privileges that apply. Although the user
must also have the SELECT object privilege on the views to actually be able to
access data, the _SYS_BI_CP_ALL analytic privilege should not be granted to
users, particularly in production systems. For this reason, the MODELING role
should only be used as a template.
Как исправить
Ссылки
Sap Hana Security Guide 8.2.1 Predefined Database Roles
page 112
page 112