Onapsis Security Advisory – The RFC function ‘RSDU_CCMS_GET_PROFILE_PARAM’ in SAP NetWeaver Business Warehouse does not perform any authorization check prior to retrieving the profile parameter value.