CVE-2020-6232

Summary

SAP Commerce, versions 1811, 1905, does not perform necessary authorization checks for an anonymous user, due to Missing Authorization Check. This affects confidentiality of secure media.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Commerce< 1811affected
SAP SESAP Commerce< 1905affected

Weaknesses

  • Missing Authorization Check

ADP Enrichment

CVE Program Container

Additional References

References