Sap Enterprise Financial Services vulnerabilities
2 known vulnerabilities affecting sap/sap_enterprise_financial_services.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2018-2455HIGHCVSS 8.8v= 6.05v= 6.06+4 more2018-09-11
CVE-2018-2455 [HIGH] CWE-862 CVE-2018-2455: SAP Enterprise Financial Services, versions 6.05, 6.06, 6.16, 6.17, 6.18, 8.0 (in business function
SAP Enterprise Financial Services, versions 6.05, 6.06, 6.16, 6.17, 6.18, 8.0 (in business function EAFS_BCA_BUSOPR_SEPA) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
cvelistv5nvd
CVE-2018-2454HIGHCVSS 8.8v= 6.05v= 6.06+4 more2018-09-11
CVE-2018-2454 [HIGH] CWE-862 CVE-2018-2454: SAP Enterprise Financial Services, versions 6.05, 6.06, 6.16, 6.17, 6.18, 8.0 (in business function
SAP Enterprise Financial Services, versions 6.05, 6.06, 6.16, 6.17, 6.18, 8.0 (in business function EAFS_BCA_BUSOPR_2) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
cvelistv5nvd