GHSA-jf6p-qvqv-f6g9MediumCVSS 4.3
SAP S/4HANA Draft operation does not perform necessary authorization checks for an authenticated...
🔗 CVE IDs covered (1)
📋 Description
SAP S/4HANA Draft operation does not perform necessary authorization checks for an authenticated user, a restricted user could access information within the entity resulting in escalation of privileges. This results in low impact on confidentiality, with no impact on integrity and availability of the application.