VYPR
Unrated severityNVD Advisory· Published Mar 10, 2020· Updated Aug 4, 2024

CVE-2020-6197

CVE-2020-6197

Description

SAP Enable Now, before version 1908, does not invalidate session tokens in a timely manner. The Insufficient Session Expiration may allow attackers with local access, for instance, to still download the portables.

Affected products

2
  • SAP/Enable Nowllm-fuzzy
    Range: <1908
  • SAP SE/SAP Enable Nowv5
    Range: < before version 1908

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.