← voltar
CVE-2020-6248

CVE-2020-6248

CVSS 9.1 CRITICALEPSS 1.9%
SAP Adaptive Server Enterprise (Backup Server), version 16.0, does not perform the necessary validation checks for an authenticated user while executing DUMP or LOAD command allowing arbitrary code execution or Code Injection.
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Produtos afetados
SAP SE · SAP Adaptive Server Enterprise (Backup Server)

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://launchpad.support.sap.com/#/notes/2917275https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=545396222