Insufficient XML Document Validation in SAP Mobile Platform 3.0
CVE-2020-6177
4.3MEDIUM
What is CVE-2020-6177?
SAP Mobile Platform 3.0 has a vulnerability where it fails to adequately validate XML documents from untrusted sources. This can potentially lead to a partial denial of service, affecting the overall performance and availability of the platform. While the platform does not permit External Entity resolution, preventing the leakage of server file contents, the inadequate validation poses a risk that should not be overlooked by users and administrators.
Affected Version(s)
SAP Mobile Platform = 3.0