Symptom
The SAP security Note 3271091 is released, however, you may have some questions such as:
- What is the affected role?
- What is the exact impact of this security vulnerability?
- Do you need to upgrade Support Package to fix the vulnerability?
- If there is no such role in the system or the role is 'not generated', is this note still required?
- If BPC is not activated in the system (e.g., it is a CRM system), is the note still applicable?
Read more...
Environment
- SAP Business Planning and Consolidation 10.1, version for SAP NetWeaver
- SAP Business Planning and Consolidation 11.1, version for SAP BW/4HANA
- SAP Business Planning and Consolidation 2021, version for SAP BW/4HANA
Product
SAP Business Planning and Consolidation 10.1, version for SAP NetWeaver ; SAP Business Planning and Consolidation 11.0, version for SAP BW/4HANA ; SAP Business Planning and Consolidation 11.1, version for SAP BW/4HANA ; SAP Business Planning and Consolidation 2021, version for SAP BW/4HANA
Keywords
SAP role SAP_BPC_ADMIN, CVE-2022-41268
, KBA , EPM-BPC-NW-ADM-SEC , Security , EPM-BPC-BW4-SEC , BPC/4 - Authentication and Authorization , How To
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.