SAP S/4HANA Draft operation does not perform necessary authorization checks for an authenticated user, a restricted user could access information within the entity resulting in escalation of privileges. This results in low impact on confidentiality, with no impact on integrity and availability of the application.
Metrics
Affected Vendors & Products
References
History
Tue, 14 Jul 2026 01:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | SAP S/4HANA Draft operation does not perform necessary authorization checks for an authenticated user, a restricted user could access information within the entity resulting in escalation of privileges. This results in low impact on confidentiality, with no impact on integrity and availability of the application. | |
| Title | Missing Authorization check in SAP S/4HANA (Draft operation) | |
| Weaknesses | CWE-862 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: sap
Published:
Updated: 2026-07-14T12:52:09.720Z
Reserved: 2026-05-07T18:39:44.147Z
Link: CVE-2026-44771
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-14T12:45:10Z