Vulnerabilities > SAP > HCM Travel Management

DATE CVE VULNERABILITY TITLE RISK
2020-08-12 CVE-2020-6301 Missing Authorization vulnerability in SAP HCM Travel Management
SAP ERP (HCM Travel Management), versions - 600, 602, 603, 604, 605, 606, 607, 608, allows an authenticated but unauthorized attacker to read, modify and settle trips, resulting in escalation of privileges, due to Missing Authorization Check.
network
low complexity
sap CWE-862
8.1