CVE-2020-6193

Summary

SAP NetWeaver (Knowledge Management ICE Service), versions 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to execute malicious scripts leading to Reflected Cross-Site Scripting (XSS) vulnerability.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP NetWeaver (Knowledge Management ICE Service)= 7.30affected
SAP SESAP NetWeaver (Knowledge Management ICE Service)= 7.31affected
SAP SESAP NetWeaver (Knowledge Management ICE Service)= 7.40affected
SAP SESAP NetWeaver (Knowledge Management ICE Service)= 7.50affected

Weaknesses

  • Reflected Cross Site Scripting

ADP Enrichment

CVE Program Container

Additional References

References