CVE-2020-6368
published 2020-10-15CVE-2020-6368: SAP Business Planning and Consolidation, versions - 750, 751, 752, 753, 754, 755, 810, 100, 200, can be abused by an attacker, allowing them to modify…
medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
SAP Business Planning and Consolidation, versions - 750, 751, 752, 753, 754, 755, 810, 100, 200, can be abused by an attacker, allowing them to modify displayed application content without authorization, and to potentially obtain authentication information from other legitimate users, leading to Cross Site Scripting.
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | business_planning_and_consolidation | — | — |
| sap | business_planning_and_consolidation | — | — |
| sap | business_planning_and_consolidation | — | — |
| sap | business_planning_and_consolidation | — | — |
| sap | business_planning_and_consolidation | — | — |
| sap | business_planning_and_consolidation | — | — |
| sap | business_planning_and_consolidation | — | — |
| sap | business_planning_and_consolidation | — | — |
| sap | business_planning_and_consolidation | — | — |
| sap_se | sap_business_planning_and_consolidation | < 750 | 750 |
| sap_se | sap_business_planning_and_consolidation | < 751 | 751 |
| sap_se | sap_business_planning_and_consolidation | < 752 | 752 |
| sap_se | sap_business_planning_and_consolidation | < 753 | 753 |
| sap_se | sap_business_planning_and_consolidation | < 754 | 754 |
| sap_se | sap_business_planning_and_consolidation | < 755 | 755 |
| sap_se | sap_business_planning_and_consolidation | < 810 | 810 |
| sap_se | sap_business_planning_and_consolidation | < 100 | 100 |
| sap_se | sap_business_planning_and_consolidation | < 200 | 200 |