Описание
SAP Landscape Management, version 3.0, allows an attacker with admin privileges to execute malicious executables with root privileges in SAP Host Agent via SAP Landscape Management due to Missing Input Validation.
Ссылки
- Permissions RequiredVendor Advisory
- Vendor Advisory
- Permissions RequiredVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:sap:landscape_management:3.0:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.0044
Низкий
7.2 High
CVSS3
7.2 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
SAP Landscape Management, version 3.0, allows an attacker with admin privileges to execute malicious executables with root privileges in SAP Host Agent via SAP Landscape Management due to Missing Input Validation.
EPSS
Процентиль: 63%
0.0044
Низкий
7.2 High
CVSS3
7.2 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-20