Vulnerability Details CVE-2020-6193
SAP NetWeaver (Knowledge Management ICE Service), versions 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to execute malicious scripts leading to Reflected Cross-Site Scripting (XSS) vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.2%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2020-6193
-
cpe:2.3:a:sap:netweaver_knowledge_management:7.30
-
cpe:2.3:a:sap:netweaver_knowledge_management:7.31
-
cpe:2.3:a:sap:netweaver_knowledge_management:7.40
-
cpe:2.3:a:sap:netweaver_knowledge_management:7.50