SAP Fiori App Intercompany Balance Reconciliation Privilege Escalation Vulnerability

A vulnerability in the SAP Fiori App Intercompany Balance Reconciliation has been identified, where the application fails to implement necessary authorization checks for authenticated users. This oversight allows for unauthorized privilege escalation. While the vulnerability has a low impact on confidentiality, integrity, and availability, it still poses a risk by allowing users to gain elevated rights they should not have.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing users to gain access to rights or functionalities beyond their authorized level.

Remediation

Users are advised to consult the SAP Security Notes for guidance on addressing this vulnerability. SAP Security Notes can be accessed through the SAP for Me platform, where users can find the complete list of all SAP Security Notes. It is recommended to implement these corrections as a priority.