CVE-2020-6229
published 2020-04-14CVE-2020-6229: SAP NetWeaver AS ABAP (Business Server Pages application CRM_BSP_FRAME), versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 75A, 75B, 75C, 75D…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
SAP NetWeaver AS ABAP (Business Server Pages application CRM_BSP_FRAME), versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 75A, 75B, 75C, 75D, 75E, does not sufficiently encode user controlled inputs, resulting in reflected Cross-Site Scripting (XSS) vulnerability.
Affected
32 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap | netweaver_as_abap_business_server_pages | — | — |
| sap_se | sap_netweaver_as_abap | < 700 | 700 |
| sap_se | sap_netweaver_as_abap | < 701 | 701 |
| sap_se | sap_netweaver_as_abap | < 702 | 702 |
| sap_se | sap_netweaver_as_abap | < 710 | 710 |
| sap_se | sap_netweaver_as_abap | < 711 | 711 |
| sap_se | sap_netweaver_as_abap | < 730 | 730 |
| sap_se | sap_netweaver_as_abap | < 731 | 731 |
| sap_se | sap_netweaver_as_abap | < 740 | 740 |
| sap_se | sap_netweaver_as_abap | < 750 | 750 |