PT-2020-19061 · Sap · Sap S/4Hana+1

Published

2020-06-10

Updated

2020-06-16

CVE-2020-6266

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions SAP Fiori for SAP S/4HANA versions 100 through 400

Description The issue allows an attacker to redirect users to a malicious site due to insufficient URL validation, leading to URL Redirection.

Recommendations For SAP Fiori for SAP S/4HANA versions 100 through 400, update to a version that includes sufficient URL validation to prevent URL redirection attacks.

Fix

Open Redirect

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-601

Related Identifiers

CVE-2020-6266

Affected Products

Sap Fiori

Sap S/4Hana

PT-2020-19061 · Sap · Sap S/4Hana+1

CVE-2020-6266

Weakness Enumeration

Related Identifiers

Affected Products

References · 6