Hi Sahil,
just do a trace using STAUTHTRACE when running these reports.
SAP will go over all necessary CO authorization objects, and it will definitely include company code/CAC, maybe plant (depending on the report).
When a missing authorization leads to data not being accessed, the report will tell the user that he has not all necessary permissions.
Cheers
Seb