CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-6209

SAP Disclosure Management, version 10.1, does not perform necessary authorization checks for an authenticated user, allowing access to administration accounts by a user with no roles, leading to Missing Authorization Check.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.8%

CVSS Severity

CVSS v3 Score 7.2

CVSS v2 Score 6.0

References

https://launchpad.support.sap.com/#/notes/2858044
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=540935305
https://launchpad.support.sap.com/#/notes/2858044
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=540935305

Products affected by CVE-2020-6209

Sap » Disclosure Management » Version: 10.1

cpe:2.3:a:sap:disclosure_management:10.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-6209

Products

Pricing

Contact Us