Vendor Master Data Information Disclosure Vulnerability in SAP Supplier Relationship Management

CVE-2023-39436 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

SAP Supplier Relationship Management -versions 600, 602, 603, 604, 605, 606, 616, 617, allows an unauthorized attacker to discover information relating to SRM within Vendor Master Data for Business Partners replication functionality.This information could be used to allow the attacker to specialize their attacks against SRM.

Learn more about our Web Application Penetration Testing UK.