VYPR
Unrated severityNVD Advisory· Published Apr 14, 2020· Updated Aug 4, 2024

CVE-2020-6229

CVE-2020-6229

Description

SAP NetWeaver AS ABAP (Business Server Pages application CRM_BSP_FRAME), versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 75A, 75B, 75C, 75D, 75E, does not sufficiently encode user controlled inputs, resulting in reflected Cross-Site Scripting (XSS) vulnerability.

Affected products

2
  • Range: 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 75A, 75B, 75C, 75D, 75E
  • SAP SE/SAP NetWeaver AS ABAP (Business Server Pages application CRM_BSP_FRAME)v5
    Range: < 700

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.