Published: 09/09/2020 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

SAP Netweaver AS ABAP(BSP Test Application sbspext_table), version-700,701,720,730,731,740,750,751,752,753,754,755, allows an unauthenticated malicious user to send polluted URL to the victim, when the victim clicks on this URL, the attacker can read, modify the information available in the victim?s browser leading to Reflected Cross Site Scripting.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sap netweaver as abap business server pages 700
sap netweaver as abap business server pages 701
sap netweaver as abap business server pages 702
sap netweaver as abap business server pages 730
sap netweaver as abap business server pages 731
sap netweaver as abap business server pages 740
sap netweaver as abap business server pages 750
sap netweaver as abap business server pages 751
sap netweaver as abap business server pages 752
sap netweaver as abap business server pages 753
sap netweaver as abap business server pages 754
sap netweaver as abap business server pages 755

CWE-79 https://launchpad.support.sap.com/#/notes/2948239 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=557449700 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-6324

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect