GHSA-jf6p-qvqv-f6g9MediumCVSS 4.3

SAP S/4HANA Draft operation does not perform necessary authorization checks for an authenticated...

Published
July 14, 2026
Last Modified
July 14, 2026

🔗 CVE IDs covered (1)

📋 Description

SAP S/4HANA Draft operation does not perform necessary authorization checks for an authenticated user, a restricted user could access information within the entity resulting in escalation of privileges. This results in low impact on confidentiality, with no impact on integrity and availability of the application.

🔗 References (4)