Automated Note Search Tool (update provided in SAP Basis 7.0, 7.01, 7.02, 7.31, 7.4, 7.5, 7.51, 7.52, 7.53 and 7.54) does not perform sufficient authorization checks leading to the reading of sensitive information.
References
Link | Resource |
---|---|
https://launchpad.support.sap.com/#/notes/2863397 | Permissions Required |
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=533671771 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2020-01-14 18:15
Updated : 2024-02-28 17:28
NVD link : CVE-2020-6307
Mitre link : CVE-2020-6307
CVE.ORG link : CVE-2020-6307
JSON object : View
Products Affected
sap
- basis
CWE
CWE-863
Incorrect Authorization