CVE-2024-37172
published 2024-07-09CVE-2024-37172: SAP S/4HANA Finance (Advanced Payment Management) does not perform necessary authorization check for an authenticated user, resulting in escalation of…
medium5.4CVSS 3.1
AVNACLPRLUINSUCLINAL
SAP S/4HANA Finance (Advanced Payment
Management) does not perform necessary authorization check for an authenticated
user, resulting in escalation of privileges. As a result, it has a low impact
to confidentiality and availability but there is no impact on the integrity.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | s4core | — | — |
| sap | s4core | — | — |
| sap_se | sap_s_4hana_finance | — | — |
| sap_se | sap_s_4hana_finance | — | — |