CVE-2020-6233

Summary

SAP S/4 HANA (Financial Products Subledger and Banking Services), versions - FSAPPL 400, 450, 500 and S4FPSL 100, allows an authenticated user to run an analysis report due to Missing Authorization Check, resulting in slowing the system.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP S/4 HANA (Financial Products Subledger and Banking Services) (FSAPPL)< 400affected
SAP SESAP S/4 HANA (Financial Products Subledger and Banking Services) (FSAPPL)< 450affected
SAP SESAP S/4 HANA (Financial Products Subledger and Banking Services) (FSAPPL)< 500affected
SAP SESAP S/4 HANA (Financial Products Subledger and Banking Services) (S4FPSL)< 100affected

Weaknesses

  • Missing Authorization Check

ADP Enrichment

CVE Program Container

Additional References

References