Vulnerabilities > SAP > GRC Process Control

DATE CVE VULNERABILITY TITLE RISK
2023-02-14 CVE-2023-0019 Missing Authorization vulnerability in SAP GRC Process Control
In SAP GRC (Process Control) - versions GRCFND_A V1200, GRCFND_A V8100, GRCPINW V1100_700, GRCPINW V1100_731, GRCPINW V1200_750, remote-enabled function module in the proprietary SAP solution enables an authenticated attacker with minimal privileges to access all the confidential data stored in the database.
network
low complexity
sap CWE-862
6.5