SAP AS ABAP (SAP Landscape Transformation), versions - 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_710, 2011_1_730, 2011_1_731, 2011_1_752, 2020 and SAP S4 HANA (SAP Landscape Transformation), versions - 101, 102, 103, 104, 105, allows a high privileged user to execute a RFC function module to which access should be restricted, however due to missing authorization an attacker can get access to some sensitive internal information of vulnerable SAP system or to make vulnerable SAP systems completely unavailable.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
sap s\\/4 hana 102 |
||
sap s\\/4 hana 103 |
||
sap s\\/4 hana 104 |
||
sap s\\/4 hana 105 |
||
sap s\\/4 hana 101 |
||
sap netweaver application server abap 2011_1_640 |
||
sap netweaver application server abap 2011_1_700 |
||
sap netweaver application server abap 2011_1_710 |
||
sap netweaver application server abap 2011_1_730 |
||
sap netweaver application server abap 2011_1_731 |
||
sap netweaver application server abap 2011_1_752 |
||
sap netweaver application server abap 2020 |
||
sap netweaver application server abap 2011_1_620 |
Vulmon