CVE-2020-6192

Опубликовано: 12 фев. 2020

Источник: nvd

CVSS3: 7.2

CVSS2: 9

EPSS Низкий

Описание

SAP Landscape Management, version 3.0, allows an attacker with admin privileges to execute malicious commands with root privileges in SAP Host Agent via SAP Landscape Management.

Ссылки

https://launchpad.support.sap.com/#/notes/2877968
Permissions Required
Vendor Advisory
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=537788812
Vendor Advisory
https://launchpad.support.sap.com/#/notes/2877968
Permissions Required
Vendor Advisory
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=537788812
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sap:landscape_management:3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 46%

0.00231

Низкий

7.2 High

CVSS3

7.2 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-2524-6f4r-2jq9

github

около 3 лет назад

SAP Landscape Management, version 3.0, allows an attacker with admin privileges to execute malicious commands with root privileges in SAP Host Agent via SAP Landscape Management.

EPSS

Процентиль: 46%

0.00231

Низкий

7.2 High

CVSS3

7.2 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-20