Statutory Reporting for Insurance Companies in SAP ERP (EA-FINSERV versions - 600, 603, 604, 605, 606, 616, 617, 618, 800 and S4CORE versions 101, 102, 103, 104) does not execute the required authorization checks for an authenticated user, allowing an malicious user to view and tamper with certain restricted data leading to Missing Authorization Check.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap erp \\(ea-finserv\\) 600 |
||
sap erp \\(ea-finserv\\) 603 |
||
sap erp \\(ea-finserv\\) 604 |
||
sap erp \\(ea-finserv\\) 605 |
||
sap erp \\(ea-finserv\\) 606 |
||
sap erp \\(ea-finserv\\) 616 |
||
sap erp \\(ea-finserv\\) 617 |
||
sap erp \\(ea-finserv\\) 618 |
||
sap erp \\(ea-finserv\\) 800 |
||
sap erp \\(s4core\\) 101 |
||
sap erp \\(s4core\\) 102 |
||
sap erp \\(s4core\\) 103 |
||
sap erp \\(s4core\\) 104 |