The use of an admin backend report within SAP Master Data Governance, versions - S4CORE 101, S4FND 102, 103, 104, SAP_BS_FND 748; allows an malicious user to execute crafted database queries, exposing the backend database, leading to SQL Injection.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap master data governance \\(s4core\\) 101 |
||
sap master data governance \\(s4fnd\\) 102 |
||
sap master data governance \\(s4fnd\\) 103 |
||
sap master data governance \\(s4fnd\\) 104 |
||
sap master data governance \\(sap bs fnd\\) 748 |