CVE-2020-6265

Published: Jun 9, 2020Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

SAP Commerce, versions - 6.7, 1808, 1811, 1905, and SAP Commerce (Data Hub), versions - 6.7, 1808, 1811, 1905, allows an attacker to bypass the authentication and/or authorization that has been configured by the system administrator due to the use of Hardcoded Credentials.

Affected (8)

Products: Sap: Commerce, Commerce Data Hub

Sap

2 products

Commerce

Commerce Data Hub

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Sap Commerce	Version 1808
Sap Commerce	Version 1811
Sap Commerce	Version 1905
Sap Commerce	Version 6.7
Sap Commerce Data Hub	Version 1808
Sap Commerce Data Hub	Version 1811
Sap Commerce Data Hub	Version 1905
Sap Commerce Data Hub	Version 6.7