Vulnerability Details CVE-2020-6290
SAP Disclosure Management, version 10.1, is vulnerable to Session Fixation attacks wherein the attacker tricks the user into using a specific session ID.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.2%
CVSS Severity
CVSS v3 Score 4.2
CVSS v2 Score 6.8
Products affected by CVE-2020-6290
-
cpe:2.3:a:sap:disclosure_management:10.1