We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
While using a specific function, SAP ERP Defense Forces and Public Security - versions 600, 603, 604, 605, 616, 617, 618, 802, 803, 804, 805, 806, 807, allows an authenticated attacker with admin privileges to write arbitrary data to the syslog file. On successful exploitation, an attacker could modify all the syslog data causing a complete compromise of integrity of the application.
Reserved 2023-06-27 | Published 2023-07-11 | Updated 2024-10-23 | Assigner sapCWE-117: Improper Output Neutralization for Logs
www.sap.com/.../02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
Support options