CVE-2019-0243

Under some circumstances, masterdata maintenance in SAP BW/4HANA (fixed in DW4CORE version 1.0 (SP08)) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:sap:bw\/4hana:1.0:sp08:*:*:*:*:*:*

History

No history.

Information

Published : 2019-01-08 20:29

Updated : 2024-02-28 16:48


NVD link : CVE-2019-0243

Mitre link : CVE-2019-0243

CVE.ORG link : CVE-2019-0243


JSON object : View

Products Affected

sap

  • bw\/4hana
CWE
CWE-862

Missing Authorization