Vulnerabilities > CVE-2020-6264 - Unspecified vulnerability in SAP Commerce

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

sap

NVD

Published: 2020-06-10

Updated: 2021-07-21

Summary

SAP Commerce, versions - 6.7, 1808, 1811, 1905, may allow an attacker to access information under certain conditions which would otherwise be restricted, leading to Information Disclosure.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP Commerce 6.7 SAP Commerce 1808 SAP Commerce 1811 SAP Commerce 1905	4

References

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=547426775
https://launchpad.support.sap.com/#/notes/2906366