SAP Business Warehouse, versions 700, 701, 702, 711, 730, 731, 740, 750, 782 and SAP BW/4HANA, versions 100, 200, allow a low privileged malicious user to inject code using a remote enabled function module over the network. Via the function module an attacker can create a malicious ABAP report which could be used to get access to sensitive data, to inject malicious UPDATE statements that could have also impact on the operating system, to disrupt the functionality of the SAP system which can thereby lead to a Denial of Service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap bw\\/4hana 200 |
||
sap bw\\/4hana 100 |
||
sap business warehouse 701 |
||
sap business warehouse 702 |
||
sap business warehouse 731 |
||
sap business warehouse 740 |
||
sap business warehouse 750 |
||
sap business warehouse 782 |
||
sap business warehouse 700 |
||
sap business warehouse 730 |
||
sap business warehouse 711 |
Plus: Grab your updates for Adobe, SAP, Android, Intel
Patch Tuesday Microsoft's May Patch Tuesday brought a lighter-than-usual load of 55 fixes for 32 of the Windows giant's applications and services, which is about half what was served up in April. The Redmond-based firm's Office and Windows flagships house many of the identified vulnerabilities, alongside Internet Explorer, Visual Studio, Visual Studio Code, Skype, and other software. Among the 55 CVEs identified by Microsoft, four are rated critical, 50 are rated important, and one is rated mode...