CVE-2020-6203

Name of the Vulnerable Software and Affected Versions SAP NetWeaver UDDI Server (Services Registry) versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50

Description The issue allows an attacker to exploit insufficient validation of path information provided by users. This leads to Path Traversal, as characters representing 'traverse to parent directory' are passed through to the file APIs.

Recommendations For versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, update to a version that includes the fix for this issue, as no specific mitigation measures are provided for these versions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.