NuytsTech Security

CVE-2018-2454

by ·

SAP Enterprise Financial Services, versions 6.05, 6.06, 6.16, 6.17, 6.18, 8.0 (in business function EAFS_BCA_BUSOPR_2) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.

Date published : 2018-09-11

http://www.securityfocus.com/bid/105316

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=499356993

Tags: