CVE-2018-2361

Summary

In SAP Solution Manager 7.20, the role SAP_BPO_CONFIG gives the Business Process Operations (BPO) configuration user more authorization than required for configuring the BPO tools.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Solution Manager7.20affected

Weaknesses

  • Missing Authorization Check

ADP Enrichment

CVE Program Container

Additional References

References