CVE-2020-6254

SAP Enterprise Threat Detection, versions 1.0, 2.0, does not sufficiently encode error response pages in case of errors, allowing XSS payload reflecting in the response, leading to reflected Cross Site Scripting.
Configurations

Configuration 1

cpe:2.3:a:sap:enterprise_threat_detection:2.0:*:*:*:*:*:*:*
cpe:2.3:a:sap:enterprise_threat_detection:1.0:*:*:*:*:*:*:*

Information

Published : 2020-05-12 06:15

Updated : 2020-05-15 12:57


NVD link : CVE-2020-6254

Mitre link : CVE-2020-6254

Products Affected
No products.
CWE