SAP Identity Management 7.2 and 8.0 do not sufficiently validate an XML document accepted from an untrusted source.
5.4CVSS
5.6AI Score
0.004EPSS
Under certain conditions, the SAP Identity Management 8.0 (pass of type ToASCII) allows an attacker to access information which would otherwise be restricted.
5.3CVSS
5.1AI Score
0.001EPSS