Vulnerabilities > SAP > Banking Services > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-01-12 CVE-2021-21467 Missing Authorization vulnerability in SAP Banking Services
SAP Banking Services (Generic Market Data) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
network
low complexity
sap CWE-862
4.3
4.3
2020-10-20 CVE-2020-6362 Incorrect Authorization vulnerability in SAP Banking Services 500
SAP Banking Services version 500, use an incorrect authorization object in some of its reports.
network
low complexity
sap CWE-863
6.5
6.5