Vulnerabilities > SAP > Master Data Governance S4Core

DATE CVE VULNERABILITY TITLE RISK
2020-05-12 CVE-2020-6249 SQL Injection vulnerability in SAP products
The use of an admin backend report within SAP Master Data Governance, versions - S4CORE 101, S4FND 102, 103, 104, SAP_BS_FND 748; allows an attacker to execute crafted database queries, exposing the backend database, leading to SQL Injection.
network
low complexity
sap CWE-89
8.8