SAP NetWeaver AS ABAP (Web Dynpro ABAP), versions (SAP_UI 750, 752, 753, 754 and SAP_BASIS 700, 710, 730, 731, 804) allows an unauthenticated attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service leading to Denial of Service
References
Link | Resource |
---|---|
https://launchpad.support.sap.com/#/notes/2856923 | Permissions Required |
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=545396222 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
05 Oct 2022, 14:16
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-noinfo | |
First Time |
Sap netweaver Application Server Abap
|
|
CPE | cpe:2.3:a:sap:netweaver_as_abap:700:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_as_abap:753:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_as_abap:731:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_as_abap:710:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_as_abap:804:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_as_abap:750:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_as_abap:754:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_as_abap:752:*:*:*:*:*:*:* |
cpe:2.3:a:sap:netweaver_application_server_abap:804:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_application_server_abap:731:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_application_server_abap:754:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_application_server_abap:753:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_application_server_abap:750:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_application_server_abap:700:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_application_server_abap:730:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_application_server_abap:710:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_application_server_abap:752:*:*:*:*:*:*:* |
Information
Published : 2020-05-12 18:15
Updated : 2023-12-10 13:27
NVD link : CVE-2020-6240
Mitre link : CVE-2020-6240
CVE.ORG link : CVE-2020-6240
JSON object : View
Products Affected
sap
- netweaver_application_server_abap
CWE