Privilege Escalation Vulnerability in SAP Enterprise Financial Services

CVE-2018-2419 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:N

SAP Enterprise Financial Services (SAPSCORE 1.11, 1.12; S4CORE 1.01, 1.02; EA-FINSERV 6.04, 6.05, 6.06, 6.16, 6.17, 6.18, 8.0) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.

Learn more about our User Device Pen Test.