CVE-2014-3131

Name of the Vulnerable Software and Affected Versions SAP Solution Manager version 7.1

Description The issue is related to improper access restriction in SAP Profile Maintenance, allowing remote authenticated users to obtain sensitive information. This is achieved via an unspecified RFC function.

Recommendations For SAP Solution Manager version 7.1, consider restricting access to the RFC function until a patch is available. As a temporary workaround, limit the privileges of authenticated users to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.