CVE-2020-6289

Summary

SAP Disclosure Management, version 10.1, had insufficient protection against Cross-Site Request Forgery, which could be used to trick user in to browsing malicious site.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Disclosure Management< 1.0affected

Weaknesses

  • Cross-Site Request Forgery

ADP Enrichment

CVE Program Container

Additional References

References