CVE-2020-6210 is a vulnerability in SAP Fiori Launchpad
Published on March 10, 2020

SAP Fiori Launchpad, versions- 753, 754, does not sufficiently encode user-controlled inputs, and hence allowing the attacker to inject the meta tag into the launchpad html using the vulnerable parameter, leading to reflected Cross-Site Scripting (XSS) vulnerability.

NVD

Products Associated with CVE-2020-6210

Want to know whenever a new CVE is published for SAP Fiori Launchpad? stack.watch will email you.

SAP Fiori Launchpad

Affected Versions

SAP SE SAP Fiori Launchpad:

Version < 753 is affected.
Version < 754 is affected.

Exploit Probability

EPSS

0.42%

Percentile

62.14%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-6210 is a vulnerability in SAP Fiori LaunchpadPublished on March 10, 2020

Products Associated with CVE-2020-6210

Affected Versions

Exploit Probability

CVE-2020-6210 is a vulnerability in SAP Fiori Launchpad
Published on March 10, 2020