Automated Note Search Tool (SAP Basis)

< 7.01

OTHER 2 CVEs

< 7.54

OTHER 2 CVEs

< 7.52

OTHER 2 CVEs

< 7.4

OTHER 2 CVEs

< 7.0

OTHER 2 CVEs

< 7.51

OTHER 2 CVEs

< 7.5

OTHER 2 CVEs

< 7.31

OTHER 2 CVEs

< 7.53

OTHER 2 CVEs

< 7.02

OTHER 2 CVEs

CVE-2020-6184

Under certain conditions, ABAP Online Community in SAP NetWeaver (SAP_BASIS version 7.40) and SAP S/4HANA (SAP_BASIS versions 7.50, 7.51, 7.52, 7.53, 7.54), does not sufficiently encode user-controlled inputs, resulting in Reflected Cross-Site Scripting (XSS) vulnerability.

MEDIUM Feb 12, 2020

CVE-2020-6307

Automated Note Search Tool (update provided in SAP Basis 7.0, 7.01, 7.02, 7.31, 7.4, 7.5, 7.51, 7.52, 7.53 and 7.54) does not perform sufficient authorization checks leading to the reading of sensitive information.

MEDIUM Jan 14, 2020