CyberSec.Space Logo
返回 CVE 浏览器

CVE-2020-26823

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0470%
EPSS Percentile16.82th
Published2020年11月10日
Last Modified2024年11月21日

Vulnerability Description

SAP Solution Manager (JAVA stack), version - 7.20, allows an unauthenticated attacker to compromise the system because of missing authorization checks in the Upgrade Diagnostics Agent Connection Service, this has an impact to the integrity and availability of the service.

Affected Platforms (CPE)

📦
Sap

Solution Manager

= 7.20

References & Advisories

🔗 https://launchpad.support.sap.com/#/notes/2985866
🔗 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=562725571
🔗 https://launchpad.support.sap.com/#/notes/2985866
🔗 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=562725571

相关漏洞威胁

CVE-2020-2682110.0

SAP Solution Manager (JAVA stack), version - 7.20, allows an unauthenticated attacker to compromise the system because of missing ...

CVE-2020-2682210.0

SAP Solution Manager (JAVA stack), version - 7.20, allows an unauthenticated attacker to compromise the system because of missing ...

CVE-2020-636410.0

SAP Solution Manager and SAP Focused Run (update provided in WILY_INTRO_ENTERPRISE 9.7, 10.1, 10.5, 10.7), allows an attacker to m...

CVE-2020-2682410.0

SAP Solution Manager (JAVA stack), version - 7.20, allows an unauthenticated attacker to compromise the system because of missing ...