CVE-2020-6259

Опубликовано: 12 мая 2020

Источник: nvd

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

Under certain conditions SAP Adaptive Server Enterprise, versions 15.7, 16.0, allows an attacker to access information which would otherwise be restricted leading to Missing Authorization Check.

Ссылки

https://launchpad.support.sap.com/#/notes/2920548
Permissions Required
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=545396222
Vendor Advisory
https://launchpad.support.sap.com/#/notes/2920548
Permissions Required
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=545396222
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:sap:adaptive_server_enterprise:15.7:*:*:*:*:*:*:*

cpe:2.3:a:sap:adaptive_server_enterprise:16.0:*:*:*:*:*:*:*

EPSS

Процентиль: 48%

0.00254

Низкий

6.5 Medium

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-862

Связанные уязвимости

GHSA-c9wh-fj9q-2xrv

github

больше 3 лет назад

Under certain conditions SAP Adaptive Server Enterprise, versions 15.7, 16.0, allows an attacker to access information which would otherwise be restricted leading to Missing Authorization Check.

EPSS

Процентиль: 48%

0.00254

Низкий

6.5 Medium

CVSS3

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-862