CVE-2020-6307

🗓️ 14 Jan 2020 17:52:59Reported by sapType

Automated Note Search Tool update in SAP Basis with insufficient authorization check

Reporter	Title	Published	Views	Family All 9
CNVD	Unspecified Vulnerability in SAP Basis Automated Note Search Tool	22 Jan 202000:00	–	cnvd
Cvelist	CVE-2020-6307	14 Jan 202017:52	–	cvelist
EUVD	EUVD-2020-27457	7 Oct 202500:30	–	euvd
NCSC	Vulnerabilities fixed in SAP products	12 Jan 202100:00	–	ncsc
NVD	CVE-2020-6307	14 Jan 202018:15	–	nvd
OSV	CVE-2020-6307	14 Jan 202018:15	–	osv
Prion	Authorization	14 Jan 202018:15	–	prion
RedhatCVE	CVE-2020-6307	22 May 202516:45	–	redhatcve
Symantec	SAP Basis Automated Note Search Tool CVE-2020-6307 Remote Authorization Bypass Vulnerability	14 Jan 202000:00	–	symantec

NVD

Vulners

Node

sap basisMatch7.0

sap basisMatch7.01

sap basisMatch7.02

sap basisMatch7.31

sap basisMatch7.40

sap basisMatch7.50

sap basisMatch7.51

sap basisMatch7.52

sap basisMatch7.53

sap basisMatch7.54

[
  {
    "product": "Automated Note Search Tool (SAP Basis)",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< 7.0"
      },
      {
        "status": "affected",
        "version": "< 7.01"
      },
      {
        "status": "affected",
        "version": "< 7.02"
      },
      {
        "status": "affected",
        "version": "< 7.31"
      },
      {
        "status": "affected",
        "version": "< 7.4"
      },
      {
        "status": "affected",
        "version": "< 7.5"
      },
      {
        "status": "affected",
        "version": "< 7.51"
      },
      {
        "status": "affected",
        "version": "< 7.52"
      },
      {
        "status": "affected",
        "version": "< 7.53"
      },
      {
        "status": "affected",
        "version": "< 7.54"
      }
    ]
  }
]

Source	Link
wiki	www.wiki.scn.sap.com/wiki/pages/viewpage.action
launchpad	www.launchpad.support.sap.com/

21 Nov 2024 05:35Current

4.6Medium risk

Vulners AI Score4.6

CVSS 24

CVSS 3.14.3

CVSS 34.3

EPSS0.00236

CWE-863