Automated Note Search Tool (update provided in SAP Basis 7.0, 7.01, 7.02, 7.31, 7.4, 7.5, 7.51, 7.52, 7.53 and 7.54) does not perform sufficient authorization checks leading to the reading of sensitive information.
References
Link | Resource |
---|---|
https://launchpad.support.sap.com/#/notes/2863397 | Permissions Required |
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=533671771 | Vendor Advisory |
https://launchpad.support.sap.com/#/notes/2863397 | Permissions Required |
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=533671771 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 05:35
Type | Values Removed | Values Added |
---|---|---|
References | () https://launchpad.support.sap.com/#/notes/2863397 - Permissions Required | |
References | () https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=533671771 - Vendor Advisory |
Information
Published : 2020-01-14 18:15
Updated : 2024-11-21 05:35
NVD link : CVE-2020-6307
Mitre link : CVE-2020-6307
CVE.ORG link : CVE-2020-6307
JSON object : View
Products Affected
sap
- basis
CWE
CWE-863
Incorrect Authorization