CVE-2019-0276

Summary

Banking services from SAP 9.0 (FSAPPL version 5) and SAP S/4HANA Financial Products Subledger (S4FPSL, version 1) performs an inadequate authorization check for an authenticated user, potentially resulting in escalation of privileges.

Affected Software

VendorProductVersion RangeStatus
SAP SEBanking services from SAP 9.0 (FSAPPL)< 5affected
SAP SESAP S/4HANA Financial Products Subledger (S4FPSL)< 1affected

Weaknesses

  • Missing Authorization Check

ADP Enrichment

CVE Program Container

Additional References

References