Non-elevated admin deleting security_admin group - Support and Troubleshooting

Non-elevated admin deleting security_admin group Problem A non-elevated/non-security_admin, admin user is able to remove security_admin groups from users by deleting the record on the sys_user_grmember table. The group cannot be modified without elevating to the security_admin role using the user related list or group related list.

Steps to Reproduce 1. Log into the system as an admin user 2. Go to the sys_user_grmember table 3. Search for a group that has "security_admin" role 4. Select a record from the list and use the "Delete" list action 5. Note that no error occurred due to removing a security_admin role from a user

Root Cause Tested on Yokohama Patch3 and not able to identify which PRB was related to this

Resolve The issue is fixed on Yokohama Patch3