CVE-2020-6290

Summary

SAP Disclosure Management, version 10.1, is vulnerable to Session Fixation attacks wherein the attacker tricks the user into using a specific session ID.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Disclosure Management< 1.0affected

Weaknesses

  • Session Fixation

ADP Enrichment

CVE Program Container

Additional References

References