Description
SAP Enterprise Financial Services, versions 6.05, 6.06, 6.16, 6.17, 6.18, 8.0 (in business function EAFS_BCA_BUSOPR_2) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
Affected products
- SAP / SAP Enterprise Financial Services= 6.05 – = 6.05
- SAP / SAP Enterprise Financial Services= 6.06 – = 6.06
- SAP / SAP Enterprise Financial Services= 6.16 – = 6.16
- SAP / SAP Enterprise Financial Services= 6.17 – = 6.17
- SAP / SAP Enterprise Financial Services= 6.18 – = 6.18
- SAP / SAP Enterprise Financial Services= 8.0 – = 8.0