CVE-2020-6230

Name of the Vulnerable Software and Affected Versions SAP OrientDB version 3.0

Description The issue allows an authenticated attacker with script execute/write permissions to inject code that can be executed by the application, leading to code injection. This enables the attacker to control the behavior of the application.

Recommendations For SAP OrientDB version 3.0, consider restricting script execute/write permissions to prevent code injection until a patch is available. As a temporary workaround, review and monitor application behavior closely for signs of unauthorized code execution.