cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-6199,https://securityvulnerability.io/vulnerability/CVE-2020-6199,Missing Authorization Check in SAP ERP and SAP S/4HANA Product,"In certain versions of SAP ERP and SAP S/4HANA, a vulnerability exists where the view FIMENAV_COMPCERT lacks an essential authorization check. This flaw allows an attacker with no authorization group to manage any company certificate, potentially leading to unauthorized manipulation of sensitive information. The affected products include multiple versions of SAP ERP and SAP S/4HANA, which require immediate action to mitigate the risk.",SAP,"SAP Erp (eappglo),SAP Erp (SAP Fin),SAP S/4hana (s4core)",5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-03-10T20:18:38.000Z,0
CVE-2020-6188,https://securityvulnerability.io/vulnerability/CVE-2020-6188,Missing Authorization Checks in SAP ERP and SAP S/4 HANA Products,"Certain reports in SAP ERP and SAP S/4 HANA fail to implement necessary authorization checks for authenticated users. This oversight can potentially allow unauthorized access to sensitive information, posing a significant risk to data integrity and security. Affected versions span several releases of the SAP_APPL and SAP_FIN components, as well as multiple iterations of the SAP S/4 HANA application. Proper authorization checks are critical to ensure that users can only access data and functions that they are permitted to.",SAP,"SAP Erp (SAP Appl),SAP Erp (SAP Fin),SAP S/4 Hana (s4core)",6.3,MEDIUM,0.0010400000028312206,false,,false,false,false,,,false,false,,2020-02-12T19:46:09.000Z,0