2 matches found
CVE-2019-0379
CVE-2019-0379 affects SAP NetWeaver Process Integration (PI) – B2B Add-On versions 1.0 and 2.0. When the default security provider is switched to BouncyCastle (BC) , authentication checks are not performed properly, causing a Missing Authentication Check vulnerability. Public documents in the pro...
CVE-2020-6305
The vulnerability is in SAP Process Integration PI Rest Adapter and is caused by insufficient encoding of user‑controlled inputs, leading to Cross‑Site Scripting (XSS). Affected versions identified in public disclosures include SAP PI/NetWeaver Process Integration updates for 7.31, 7.40, and 7.50...