2 matches found
CVE-2020-6256
CVE-2020-6256 concerns SAP Master Data Governance, versions 748–804, where a missing authorization check allows users to display change request details without the required permissions. Connected sources (Red Hat advisory, CNVD, CVE listings, and national CERT/NCSC-style notes) consistently ident...
CVE-2023-49058
The CVE concerns SAP Master Data Governance File Upload path handling. Affected: SAP Master Data Governance (File Upload) where insufficient validation of user-supplied path information allows traversal characters to reach file APIs. Root cause: directory-traversal due to path validation gaps. Im...