Vulnerability Details CVE-2020-6256
SAP Master Data Governance, versions - 748, 749, 750, 751, 752, 800, 801, 802, 803, 804, allows users to display change request details without having required authorizations, due to Missing Authorization Check.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.8%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 4.0
References
Products affected by CVE-2020-6256
-
cpe:2.3:a:sap:master_data_governance:748
-
cpe:2.3:a:sap:master_data_governance:749
-
cpe:2.3:a:sap:master_data_governance:750
-
cpe:2.3:a:sap:master_data_governance:751
-
cpe:2.3:a:sap:master_data_governance:752
-
cpe:2.3:a:sap:master_data_governance:800
-
cpe:2.3:a:sap:master_data_governance:801
-
cpe:2.3:a:sap:master_data_governance:802
-
cpe:2.3:a:sap:master_data_governance:803
-
cpe:2.3:a:sap:master_data_governance:804