CVE-2020-6228

CWE-3543 documents3 sources
Severity
7.5HIGH
EPSS
0.1%
top 67.35%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SAP SE SAP Business ClientSAP Business Client
Timeline
PublishedApr 14
Latest updateMay 24

Description

SAP Business Client, versions 6.5, 7.0, does not perform necessary integrity checks which could be exploited by an attacker under certain conditions to modify the installer.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5sap_se/sap_business_client< 6.5+1
NVDsap/business_client6.0, 6.5, 7.0+2

🔴Vulnerability Details

2
GHSA
GHSA-42h8-r672-w9r8: SAP Business Client, versions 62022-05-24
CVEList
CVE-2020-6228: SAP Business Client, versions 62020-04-14
CVE-2020-6228 (HIGH CVSS 7.5) | SAP Business Client | cvebase.io