Sap Enterprise Extension Financial Services vulnerabilities
2 known vulnerabilities affecting sap/enterprise_extension_financial_services.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2019-0383HIGHCVSS 8.8v6.0v6.03+7 more2019-12-17
CVE-2019-0383 [HIGH] CWE-863 CVE-2019-0383: Transaction Management in SAP Treasury and Risk Management (corrected in S4CORE versions 1.01, 1.02,
Transaction Management in SAP Treasury and Risk Management (corrected in S4CORE versions 1.01, 1.02, 1.03, 1.04 and EA-FINSERV versions 6.0, 6.03, 6.04, 6.05, 6.06, 6.16, 6.17, 6.18, 8.0) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
nvd
CVE-2019-0384HIGHCVSS 8.8v6.0v6.03+7 more2019-12-17
CVE-2019-0384 [HIGH] CWE-863 CVE-2019-0384: Transaction Management in SAP Treasury and Risk Management (corrected in S4CORE versions 1.01, 1.02,
Transaction Management in SAP Treasury and Risk Management (corrected in S4CORE versions 1.01, 1.02, 1.03, 1.04 and EA-FINSERV versions 6.0, 6.03, 6.04, 6.05, 6.06, 6.16, 6.17, 6.18, 8.0) does not perform necessary authorization checks for functionalities that require user identity.
nvd