CVE-2024-47587

Summary

Cash Operations does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges causing low impact to confidentiality to the application.

Affected Software

VendorProductVersion RangeStatus
SAP_SESAP Cash Management (Cash Operations)S4CORE 103affected
SAP_SESAP Cash Management (Cash Operations)104affected
SAP_SESAP Cash Management (Cash Operations)105affected
SAP_SESAP Cash Management (Cash Operations)106affected
SAP_SESAP Cash Management (Cash Operations)107affected
SAP_SESAP Cash Management (Cash Operations)108affected

Weaknesses

  • CWE-862: CWE-862: Missing Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References