CVE-2020-6302

Опубликовано: 09 сент. 2020

Источник: nvd

CVSS3: 6.4

CVSS3: 8.1

CVSS2: 7.5

EPSS Низкий

Описание

SAP Commerce versions 6.7, 1808, 1811, 1905, 2005 contains the jSession ID in the backoffice URL when the application is loaded initially. An attacker can get this session ID via shoulder surfing or man in the middle attack and subsequently get access to admin user accounts, leading to Session Fixation and complete compromise of the confidentiality, integrity and availability of the application.

Ссылки

https://launchpad.support.sap.com/#/notes/2934451
Permissions Required
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=557449700
Vendor Advisory
https://launchpad.support.sap.com/#/notes/2934451
Permissions Required
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=557449700
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:sap:commerce:6.7:*:*:*:*:*:*:*

cpe:2.3:a:sap:commerce:1808:*:*:*:*:*:*:*

cpe:2.3:a:sap:commerce:1811:*:*:*:*:*:*:*

cpe:2.3:a:sap:commerce:1905:*:*:*:*:*:*:*

cpe:2.3:a:sap:commerce:2005:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.00397

Низкий

6.4 Medium

CVSS3

8.1 High

CVSS3

7.5 High

CVSS2

Дефекты

CWE-384

NVD-CWE-noinfo

Связанные уязвимости

GHSA-m697-r4gm-82f3

github

больше 3 лет назад

EPSS

Процентиль: 60%

0.00397

Низкий

6.4 Medium

CVSS3

8.1 High

CVSS3

7.5 High

CVSS2

Дефекты

CWE-384

NVD-CWE-noinfo