CVE-2020-6260

Summary

SAP Solution Manager (Trace Analysis), version 7.20, allows an attacker to inject superflous data that can be displayed by the application, due to Incomplete XML Validation. The application shows additional data that do not actually exist.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Solution Manager (Trace Analysis)< 7.20affected

Weaknesses

  • Incomplete XML Validation

ADP Enrichment

CVE Program Container

Additional References

References