CVE-2020-6197

2020-03-10T21:15:00
ID CVE-2020-6197
Type cve
Reporter cve@mitre.org
Modified 2020-03-12T13:38:00

Description

SAP Enable Now, before version 1908, does not invalidate session tokens in a timely manner. The Insufficient Session Expiration may allow attackers with local access, for instance, to still download the portables.