Sap Se Automated Note Search Tool vulnerabilities
2 known vulnerabilities affecting sap_se/automated_note_search_tool.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2020-6184MEDIUMCVSS 6.1fixed in 7.0fixed in 7.01+8 more2020-02-12
CVE-2020-6184 [MEDIUM] CWE-79 CVE-2020-6184: Under certain conditions, ABAP Online Community in SAP NetWeaver (SAP_BASIS version 7.40) and SAP S/
Under certain conditions, ABAP Online Community in SAP NetWeaver (SAP_BASIS version 7.40) and SAP S/4HANA (SAP_BASIS versions 7.50, 7.51, 7.52, 7.53, 7.54), does not sufficiently encode user-controlled inputs, resulting in Reflected Cross-Site Scripting (XSS) vulnerability.
cvelistv5nvd
CVE-2020-6307MEDIUMCVSS 4.3fixed in 7.0fixed in 7.01+8 more2020-01-14
CVE-2020-6307 [MEDIUM] CWE-863 CVE-2020-6307: Automated Note Search Tool (update provided in SAP Basis 7.0, 7.01, 7.02, 7.31, 7.4, 7.5, 7.51, 7.52
Automated Note Search Tool (update provided in SAP Basis 7.0, 7.01, 7.02, 7.31, 7.4, 7.5, 7.51, 7.52, 7.53 and 7.54) does not perform sufficient authorization checks leading to the reading of sensitive information.
cvelistv5nvd