CVE-2018-2454

Published: 2018-09-11T15:29Z

Last Modified: 2024-11-21T04:03Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

SAP Enterprise Financial Services, versions 6.05, 6.06, 6.16, 6.17, 6.18, 8.0 (in business function EAFS_BCA_BUSOPR_2) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt