Home
LOW: 3.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:NDefault status
unaffected
SAP_BASIS 702
affected
SAP_BASIS 731
affected
SAP_BASIS 740
affected
SAP_BASIS 750
affected
SAP_BASIS 751
affected
SAP_BASIS 752
affected
SAP_BASIS 753
affected
SAP_BASIS 754
affected
SAP_BASIS 755
affected
SAP_BASIS 756
affected
SAP_BASIS 757
affected
SAP_BASIS 758
affected
SAP_BASIS 816
affected
Description
Due to missing authorization check in SAP NetWeaver Application Server for ABAP, an authenticated attacker could execute specific ABAP function module and read the sensitive information from database catalog of the ABAP system. This vulnerability has low impact on the application's confidentiality with no effect on the integrity and availability.
Problem types
CWE-862: Missing Authorization
Product status
SAP_BASIS 702
SAP_BASIS 731
SAP_BASIS 740
SAP_BASIS 750
SAP_BASIS 751
SAP_BASIS 752
SAP_BASIS 753
SAP_BASIS 754
SAP_BASIS 755
SAP_BASIS 756
SAP_BASIS 757
SAP_BASIS 758
SAP_BASIS 816