SAP Fiori for SAP S/4HANA, versions - 100, 200, 300, 400, allows an attacker to redirect users to a malicious site due to insufficient URL validation, leading to URL Redirection.
References
Link | Resource |
---|---|
https://launchpad.support.sap.com/#/notes/2911704 | Permissions Required |
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=547426775 | Vendor Advisory |
https://launchpad.support.sap.com/#/notes/2911687 | Permissions Required Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2020-06-10 06:15
Updated : 2020-06-16 07:10
NVD link : CVE-2020-6266
Mitre link : CVE-2020-6266
JSON object : View
CWE
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')
Products Affected
sap
- fiori