Security Advisory

CVE-2022-29613

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-11 14:57:56

Last updated 2024-08-03 06:26:06

Assigner sap

State PUBLISHED

Description

Due to insufficient input validation, SAP Employee Self Service allows an authenticated attacker with user privileges to alter employee number. On successful exploitation, the attacker can view personal details of other users causing a limited impact on confidentiality of the application.

← Browse all CVEs View on cve.org ↗