{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T20:36:02.725","vulnerabilities":[{"cve":{"id":"CVE-2020-6265","sourceIdentifier":"cna@sap.com","published":"2020-06-09T19:15:10.543","lastModified":"2024-11-21T05:35:24.363","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"SAP Commerce, versions - 6.7, 1808, 1811, 1905, and SAP Commerce (Data Hub), versions - 6.7, 1808, 1811, 1905, allows an attacker to bypass the authentication and/or authorization that has been configured by the system administrator due to the use of Hardcoded Credentials."},{"lang":"es","value":"SAP Commerce, versiones - 6.7, 1808, 1811, 1905, y SAP Commerce (Data Hub), versiones - 6.7, 1808, 1811, 1905, permite a un atacante omitir una autenticaciĆ³n y/o autorizaciĆ³n configurada por el administrador del sistema debido al uso de Credenciales Embebidas"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV30":[{"source":"cna@sap.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cna@sap.com","type":"Secondary","description":[{"lang":"en","value":"CWE-798"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-798"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sap:commerce:6.7:*:*:*:*:*:*:*","matchCriteriaId":"20B6F0DE-3989-47FD-97F0-2F52245D57A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:commerce:1808:*:*:*:*:*:*:*","matchCriteriaId":"F352D085-2B1E-44A9-81C6-2E1F5C249AB4"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:commerce:1811:*:*:*:*:*:*:*","matchCriteriaId":"27A12336-30BA-439D-A3F2-B7D93D5B52DC"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:commerce:1905:*:*:*:*:*:*:*","matchCriteriaId":"F665F648-5C35-4EC8-8064-8ED139C8813C"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:commerce_data_hub:6.7:*:*:*:*:*:*:*","matchCriteriaId":"99ACEB84-0AEB-438D-93BB-4CE4CC5047DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:commerce_data_hub:1808:*:*:*:*:*:*:*","matchCriteriaId":"7595660F-77F1-4512-B9C9-596F513E8DFC"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:commerce_data_hub:1811:*:*:*:*:*:*:*","matchCriteriaId":"623BF378-FA6E-4110-818A-B4E69F3071B7"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:commerce_data_hub:1905:*:*:*:*:*:*:*","matchCriteriaId":"2F7D9F96-93D8-42EE-83B4-0B2AB8800923"}]}]}],"references":[{"url":"https://launchpad.support.sap.com/#/notes/2918924","source":"cna@sap.com","tags":["Permissions Required"]},{"url":"https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=547426775","source":"cna@sap.com","tags":["Vendor Advisory"]},{"url":"https://launchpad.support.sap.com/#/notes/2918924","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Permissions Required"]},{"url":"https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=547426775","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}