SAP NetWeaver (ABAP Server) and ABAP Platform, versions 731, 740, 750, allows an attacker with admin privileges to access certain files which should otherwise be restricted, leading to Information Disclosure.
References
Link | Resource |
---|---|
https://launchpad.support.sap.com/#/notes/2927373 | Permissions Required Vendor Advisory |
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552599675 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
05 Oct 2022, 14:16
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:sap:netweaver_as_abap:750:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_as_abap:740:*:*:*:*:*:*:* |
cpe:2.3:a:sap:netweaver_application_server_abap:750:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_application_server_abap:731:*:*:*:*:*:*:* cpe:2.3:a:sap:netweaver_application_server_abap:740:*:*:*:*:*:*:* |
First Time |
Sap netweaver Application Server Abap
|
|
CWE | NVD-CWE-noinfo |
Information
Published : 2020-07-14 13:15
Updated : 2023-12-10 13:27
NVD link : CVE-2020-6280
Mitre link : CVE-2020-6280
CVE.ORG link : CVE-2020-6280
JSON object : View
Products Affected
sap
- netweaver_application_server_abap
- abap_platform
CWE