CVE-2020-6261

Summary

SAP Solution Manager (Trace Analysis), version 7.20, allows an attacker to perform a log injection into the trace file, due to Incomplete XML Validation. The readability of the trace file is impaired.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Solution Manager (Trace Analysis)< 7.20affected

Weaknesses

  • Incomplete XML Validation

ADP Enrichment

CVE Program Container

Additional References

References