Vulnerabilities

CVE-2024-27900

by Fred · 12/03/2024

Due to missing authorization check, attacker with business user account in SAP ABAP Platform – version 758, 795, can change the privacy setting of job templates from shared to private. As a result, the selected template would only be accessible to the owner.

More information : https://me.sap.com/notes/3419022

Similar

Tags: Cybersecurity Alert