In SAP NetWeaver AS for ABAP and ABAP Platform - versions 701, 702, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 786, an attacker authenticated as a regular user can use the S/4 Hana dashboard to reveal systems and services which they would not normally be allowed to see. No information alteration or denial of service is possible.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Netweaver_abap | Sap | 701 (including) | 701 (including) |
| Netweaver_abap | Sap | 702 (including) | 702 (including) |
| Netweaver_abap | Sap | 711 (including) | 711 (including) |
| Netweaver_abap | Sap | 730 (including) | 730 (including) |
| Netweaver_abap | Sap | 731 (including) | 731 (including) |
| Netweaver_abap | Sap | 740 (including) | 740 (including) |
| Netweaver_abap | Sap | 750 (including) | 750 (including) |
| Netweaver_abap | Sap | 751 (including) | 751 (including) |
| Netweaver_abap | Sap | 752 (including) | 752 (including) |
| Netweaver_abap | Sap | 753 (including) | 753 (including) |
| Netweaver_abap | Sap | 754 (including) | 754 (including) |
| Netweaver_abap | Sap | 755 (including) | 755 (including) |
| Netweaver_abap | Sap | 756 (including) | 756 (including) |
| Netweaver_abap | Sap | 786 (including) | 786 (including) |
| Netweaver_application_server_abap | Sap | 701 (including) | 701 (including) |
| Netweaver_application_server_abap | Sap | 702 (including) | 702 (including) |
| Netweaver_application_server_abap | Sap | 711 (including) | 711 (including) |
| Netweaver_application_server_abap | Sap | 730 (including) | 730 (including) |
| Netweaver_application_server_abap | Sap | 731 (including) | 731 (including) |
| Netweaver_application_server_abap | Sap | 740 (including) | 740 (including) |
| Netweaver_application_server_abap | Sap | 750 (including) | 750 (including) |
| Netweaver_application_server_abap | Sap | 751 (including) | 751 (including) |
| Netweaver_application_server_abap | Sap | 752 (including) | 752 (including) |
| Netweaver_application_server_abap | Sap | 753 (including) | 753 (including) |
| Netweaver_application_server_abap | Sap | 754 (including) | 754 (including) |
| Netweaver_application_server_abap | Sap | 755 (including) | 755 (including) |
| Netweaver_application_server_abap | Sap | 756 (including) | 756 (including) |
| Netweaver_application_server_abap | Sap | 786 (including) | 786 (including) |