CVE-2022-31589

Due to improper authorization check, business users who are using Israeli File from SHAAM program (/ATL/VQ23 transaction), are granted more than needed authorization to perform certain transaction, which may lead to users getting access to data that would otherwise be restricted.
Configurations

Configuration 1

cpe:2.3:a:sap:s/4hana:100:*:*:*:*:*:*:*
cpe:2.3:a:sap:s/4hana:101:*:*:*:*:*:*:*
cpe:2.3:a:sap:s/4hana:102:*:*:*:*:*:*:*
cpe:2.3:a:sap:s/4hana:103:*:*:*:*:*:*:*
cpe:2.3:a:sap:s/4hana:104:*:*:*:*:*:*:*
cpe:2.3:a:sap:erp_financial_accounting:618:*:*:*:*:*:*:*
cpe:2.3:a:sap:erp_financial_accounting:720:*:*:*:*:*:*:*
cpe:2.3:a:sap:s/4hana:105:*:*:*:*:*:*:*
cpe:2.3:a:sap:s/4hana:106:*:*:*:*:*:*:*
cpe:2.3:a:sap:s/4hana:107:*:*:*:*:*:*:*
cpe:2.3:a:sap:s/4hana:108:*:*:*:*:*:*:*
cpe:2.3:a:sap:erp_localization_for_cee_countries:c-cee_110_600:*:*:*:*:*:*:*
cpe:2.3:a:sap:erp_localization_for_cee_countries:c-cee_110_602:*:*:*:*:*:*:*
cpe:2.3:a:sap:erp_localization_for_cee_countries:c-cee_110_603:*:*:*:*:*:*:*
cpe:2.3:a:sap:erp_localization_for_cee_countries:c-cee_110_604:*:*:*:*:*:*:*
cpe:2.3:a:sap:erp_localization_for_cee_countries:c-cee_110_700:*:*:*:*:*:*:*

Information

Published : 2022-06-14 07:15

Updated : 2022-06-27 05:17


NVD link : CVE-2022-31589

Mitre link : CVE-2022-31589

Products Affected
No products.
CWE