CVE Catalog

CVE-2026-44750

MediumCVSS 4.3
Published: Updated: Translated: NVD NIST

Summary

SAP MDG (Review Match Groups Application) does not perform the necessary authorization checks for authenticated users. This could allow a low-privileged user to perform actions that would otherwise be restricted, resulting in escalation of privileges.

Risk Assessment

The risk to the organization is that low-privileged users may gain access to functions that should be reserved for more privileged users, potentially leading to unauthorized actions.

Recommendation

It is recommended to implement appropriate authorization checks in the application to prevent privilege escalation by low-privileged users.

Original NVD description (English source)

SAP MDG (Review Match Groups Application) does not perform the necessary authorization checks for authenticated users. This could allow a low-privileged user to perform actions that would otherwise be restricted, resulting in escalation of privileges. This has a low impact on integrity, while confidentiality and availability are not impacted.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS