cbcvebase.
CVE-2020-6318
published 2020-09-09

CVE-2020-6318: A Remote Code Execution vulnerability exists in the SAP NetWeaver (ABAP Server, up to release 7.40) and ABAP Platform (> release 7.40).Because of this, an…

high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
A Remote Code Execution vulnerability exists in the SAP NetWeaver (ABAP Server, up to release 7.40) and ABAP Platform (> release 7.40).Because of this, an attacker can exploit these products via Code Injection, and potentially enabling to take complete control of the products, including viewing, changing, or deleting data by injecting code into the working memory which is subsequently executed by the application. It can also be used to cause a general fault in the product, causing the products to terminate.

Affected

30 ranges· showing 25
VendorProductVersion rangeFixed in
sane-backends_projectsane-backends>= 0 < 1.0.25+git20150528-1ubuntu2.16.04.31.0.25+git20150528-1ubuntu2.16.04.3
sane-backends_projectsane-backends>= 0 < 1.0.27-1~experimental3ubuntu2.31.0.27-1~experimental3ubuntu2.3
sane-backends_projectsane-backends>= 0 < 1.0.29-0ubuntu5.11.0.29-0ubuntu5.1
sapabap_platform
sapabap_platform
sapabap_platform
sapabap_platform
sapabap_platform
sapabap_platform
sapabap_platform
sapabap_platform
sapabap_platform
sapabap_platform
sapabap_platform
sapabap_platform
sapabap_platform
sap_sesap_netweaver_and_abap_platform< 700700
sap_sesap_netweaver_and_abap_platform< 701701
sap_sesap_netweaver_and_abap_platform< 702702
sap_sesap_netweaver_and_abap_platform< 710710
sap_sesap_netweaver_and_abap_platform< 711711
sap_sesap_netweaver_and_abap_platform< 730730
sap_sesap_netweaver_and_abap_platform< 731731
sap_sesap_netweaver_and_abap_platform< 740740
sap_sesap_netweaver_and_abap_platform< 750750

CVSS provenance

nvdv3.17.2HIGHCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
osv7.5HIGH