CVE-2020-6290

SAP Disclosure Management, version 10.1, is vulnerable to Session Fixation attacks wherein the attacker tricks the user into using a specific session ID.

Date published : 2020-07-14

https://launchpad.support.sap.com/#/notes/2758000

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552599675