GCVE - cpe:2.3:a:sap:treasury_and_risk_management

Approved changes feed: RSS · Atom

cpe:2.3:a:sap:treasury_and_risk_management_\(s4core\):102:*:*:*:*:*:*:*

part: a version: 102 update: *

Vendor	Sap (`dd5aa0c0-20b0-5c86-a937-aa29f1a33b77`)
Product	Treasury And Risk Management (S4Core) (`e1dff027-2b7d-5581-a36f-1e0113ad0c6b`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-6204`	vulnerable	2026-06-03 14:42:58.135473	Details available MEDIUM (4.3) The selection query in SAP Treasury and Risk Management (Transaction Management) (EA-FINSERV?versions 600, 603, 604, 605, 606, 616, 617, 618, 800 and S4CORE versions 101, 102, 103, 104) returns more records than it should be when selecting and displaying the contract number, leading to Missing Authorization Check. Published: 2020-03-10T20:20:12.000Z Updated: 2024-08-04T08:55:22.119Z Open on db.gcve.eu Reference links https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=540935305 https://launchpad.support.sap.com/#/notes/2841874	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.