Home

CVE-2020-6280

Description

SAP NetWeaver (ABAP Server) and ABAP Platform, versions 731, 740, 750, allows an attacker with admin privileges to access certain files which should otherwise be restricted, leading to Information Disclosure.

Risk Information

Base Score
2.7
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.232

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in SAP NetWeaver Application Server ABAP 731Windows
Multiple Vulnerabilities are affected in SAP NetWeaver Application Server ABAP 740Windows
Multiple Vulnerabilities are affected in SAP NetWeaver Application Server ABAPWindows
Vulnerabilities CVE-2020-6181,CVE-2020-6280,CVE-2020-6310 are affected in SAP ABAP Platform (ABAP Build Framework) 7.50Windows
Vulnerabilities CVE-2020-6280,CVE-2020-6296,CVE-2020-6310 are affected in SAP ABAP Platform (ABAP Build Framework) 7.31Windows
Vulnerabilities CVE-2020-6280,CVE-2020-6310 are affected in SAP ABAP Platform (ABAP Build Framework) 7.40Windows
Multiple Vulnerabilities are affected in SAP NetWeaver and ABAP platform (ST-PI) 740Windows
Multiple Vulnerabilities are affected in SAP NetWeaver and ABAP platform (ST-PI) 750Windows
Multiple Vulnerabilities are affected in SAP NetWeaver and ABAP platform (ST-PI) 731Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234