CVE-2020-6209
First published: Tue Mar 10 2020(Updated: )
SAP Disclosure Management, version 10.1, does not perform necessary authorization checks for an authenticated user, allowing access to administration accounts by a user with no roles, leading to Missing Authorization Check.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP Disclosure Management | =10.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for SAP Disclosure Management version 10.1?
The vulnerability ID for SAP Disclosure Management version 10.1 is CVE-2020-6209.
What is the severity of CVE-2020-6209?
The severity of CVE-2020-6209 is high with a CVSS score of 7.5.
What is the description of CVE-2020-6209?
CVE-2020-6209 is a vulnerability in SAP Disclosure Management 10.1 that allows an authenticated user to access administration accounts without proper authorization checks.
How does CVE-2020-6209 affect SAP Disclosure Management?
CVE-2020-6209 affects SAP Disclosure Management version 10.1, allowing unauthorized access to administration accounts.
Are there any fixes or patches available for CVE-2020-6209?
Yes, SAP has released patches and fixes for CVE-2020-6209. It is recommended to apply these updates to mitigate the vulnerability.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/sap
- canonical/sap disclosure management
- version/sap disclosure management/10.1