Sap: >> Identity Management >> 8.0 Security Vulnerabilities
SAP Identity Management, version 8.0, does not perform necessary authorization checks for an authenticated user, allowing the attacker to view certain sensitive information of the victim, leading to Missing Authorization Check.
CVSS Score
4.3
EPSS Score
0.002
Published
2020-05-12
SAP Identity Management 7.2 and 8.0 do not sufficiently validate an XML document accepted from an untrusted source.
CVSS Score
5.4
EPSS Score
0.007
Published
2018-05-09
Under certain conditions, the SAP Identity Management 8.0 (pass of type ToASCII) allows an attacker to access information which would otherwise be restricted.
CVSS Score
5.3
EPSS Score
0.002
Published
2018-05-09