Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ea-finserv vulnerabilities and exploits

(subscribe to this query)
8.1
CVSSv3
CVE-2020-6268
Statutory Reporting for Insurance Companies in SAP ERP (EA-FINSERV versions - 600, 603, 604, 605, 606, 616, 617, 618, 800 and S4CORE versions 101, 102, 103, 104) does not execute the required authorization checks for an authenticated user, allowing an malicious user to view and t...
Sap Erp \\(ea-finserv\\) 600Sap Erp \\(ea-finserv\\) 603Sap Erp \\(ea-finserv\\) 604Sap Erp \\(ea-finserv\\) 605Sap Erp \\(ea-finserv\\) 606Sap Erp \\(ea-finserv\\) 616Sap Erp \\(ea-finserv\\) 617Sap Erp \\(ea-finserv\\) 618Sap Erp \\(ea-finserv\\) 800Sap Erp \\(s4core\\) 101Sap Erp \\(s4core\\) 102Sap Erp \\(s4core\\) 103Sap Erp \\(s4core\\) 104
4.3
CVSSv3
CVE-2020-6204
The selection query in SAP Treasury and Risk Management (Transaction Management) (EA-FINSERV?versions 600, 603, 604, 605, 606, 616, 617, 618, 800 and S4CORE versions 101, 102, 103, 104) returns more records than it should be when selecting and displaying the contract number, lead...
Sap Treasury And Risk Management \\(ea-finserv\\) 600Sap Treasury And Risk Management \\(ea-finserv\\) 603Sap Treasury And Risk Management \\(ea-finserv\\) 604Sap Treasury And Risk Management \\(ea-finserv\\) 605Sap Treasury And Risk Management \\(ea-finserv\\) 606Sap Treasury And Risk Management \\(ea-finserv\\) 616Sap Treasury And Risk Management \\(ea-finserv\\) 617Sap Treasury And Risk Management \\(ea-finserv\\) 618Sap Treasury And Risk Management \\(ea-finserv\\) 800Sap Treasury And Risk Management \\(s4core\\) 101Sap Treasury And Risk Management \\(s4core\\) 102Sap Treasury And Risk Management \\(s4core\\) 103Sap Treasury And Risk Management \\(s4core\\) 104
8.8
CVSSv3
CVE-2019-0384
Transaction Management in SAP Treasury and Risk Management (corrected in S4CORE versions 1.01, 1.02, 1.03, 1.04 and EA-FINSERV versions 6.0, 6.03, 6.04, 6.05, 6.06, 6.16, 6.17, 6.18, 8.0) does not perform necessary authorization checks for functionalities that require user identi...
Sap Enterprise Extension Financial Services 6.0Sap Enterprise Extension Financial Services 6.03Sap Enterprise Extension Financial Services 6.04Sap Enterprise Extension Financial Services 6.05Sap Enterprise Extension Financial Services 6.06Sap Enterprise Extension Financial Services 6.16Sap Enterprise Extension Financial Services 6.17Sap Enterprise Extension Financial Services 6.18Sap Enterprise Extension Financial Services 8.0Sap Treasury And Risk Management \\(s4core\\) 1.01Sap Treasury And Risk Management \\(s4core\\) 1.02Sap Treasury And Risk Management \\(s4core\\) 1.03Sap Treasury And Risk Management \\(s4core\\) 1.04
8.8
CVSSv3
CVE-2019-0383
Transaction Management in SAP Treasury and Risk Management (corrected in S4CORE versions 1.01, 1.02, 1.03, 1.04 and EA-FINSERV versions 6.0, 6.03, 6.04, 6.05, 6.06, 6.16, 6.17, 6.18, 8.0) does not perform necessary authorization checks for an authenticated user, resulting in esca...
Sap Enterprise Extension Financial Services 6.0Sap Enterprise Extension Financial Services 6.03Sap Enterprise Extension Financial Services 6.04Sap Enterprise Extension Financial Services 6.05Sap Enterprise Extension Financial Services 6.06Sap Enterprise Extension Financial Services 6.16Sap Enterprise Extension Financial Services 6.17Sap Enterprise Extension Financial Services 6.18Sap Enterprise Extension Financial Services 8.0Sap Treasury And Risk Management \\(s4core\\) 1.01Sap Treasury And Risk Management \\(s4core\\) 1.02Sap Treasury And Risk Management \\(s4core\\) 1.03Sap Treasury And Risk Management \\(s4core\\) 1.04
8.8
CVSSv3
CVE-2019-0280
SAP Treasury and Risk Management (EA-FINSERV 6.0, 6.03, 6.04, 6.05, 6.06, 6.16, 6.17, 6.18 and 8.0; S4CORE 1.01, 1.02 and 1.03), does not perform necessary authorization checks for authorization objects T_DEAL_DP and T_DEAL_PD , resulting in escalation of privileges.
Sap Treasury And Risk Management 6.06Sap Treasury And Risk Management 6.17Sap Treasury And Risk Management 8.0Sap Treasury And Risk Management 6.0Sap Treasury And Risk Management 6.03Sap Treasury And Risk Management 6.04Sap Treasury And Risk Management 6.05Sap Treasury And Risk Management 6.16Sap Treasury And Risk Management 6.18
8.8
CVSSv3
CVE-2018-2484
SAP Enterprise Financial Services (fixed in SAPSCORE 1.13, 1.14, 1.15; S4CORE 1.01, 1.02, 1.03; EA-FINSERV 1.10, 2.0, 5.0, 6.0, 6.03, 6.04, 6.05, 6.06, 6.16, 6.17, 6.18, 8.0; Bank/CFM 4.63_20) does not perform necessary authorization checks for an authenticated user, resulting in...
Sap Sapscore 1.14Sap Sapscore 1.15Sap Sapscore 1.13Sap S4core 1.01Sap S4core 1.02Sap S4core 1.03Sap Ea-finserv 6.03Sap Ea-finserv 6.06Sap Ea-finserv 6.17Sap Ea-finserv 1.10Sap Ea-finserv 2.0Sap Ea-finserv 6.18Sap Ea-finserv 8.0Sap Ea-finserv 6.04Sap Ea-finserv 5.0Sap Ea-finserv 6.0Sap Ea-finserv 6.05Sap Ea-finserv 6.16Sap Bank\\/cfm 4.63 20
4.6
CVSSv3
CVE-2018-2419
SAP Enterprise Financial Services (SAPSCORE 1.11, 1.12; S4CORE 1.01, 1.02; EA-FINSERV 6.04, 6.05, 6.06, 6.16, 6.17, 6.18, 8.0) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
Sap Sapscore 1.12Sap Sapscore 1.11Sap S4core 1.02Sap S4core 1.01Sap Ea-finserv 6.18Sap Ea-finserv 8.0Sap Ea-finserv 6.05Sap Ea-finserv 6.16Sap Ea-finserv 6.04Sap Ea-finserv 6.06Sap Ea-finserv 6.17
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook