CVE-2020-6307

Automated Note Search Tool (update provided in SAP Basis 7.0, 7.01, 7.02, 7.31, 7.4, 7.5, 7.51, 7.52, 7.53 and 7.54) does not perform sufficient authorization checks leading to the reading of sensitive information.
Severity
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Atk. Vector
NETWORK
Atk. Complexity
LOW
Priv. Required
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
sapbasis
7.0
sapbasis
7.01
sapbasis
7.02
sapbasis
7.31
sapbasis
7.40
sapbasis
7.50
sapbasis
7.51
sapbasis
7.52
sapbasis
7.53
sapbasis
7.54
𝑥
= Vulnerable software versions