PT-2020-19036 · Sap · Sap Netweaver As Abap
Published
2020-05-12
·
Updated
2022-10-05
·
CVE-2020-6240
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
SAP NetWeaver AS ABAP (Web Dynpro ABAP) versions SAP UI 750, 752, 753, 754 and SAP BASIS 700, 710, 730, 731, 804
Description
The issue allows an unauthenticated attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service, leading to Denial of Service.
Recommendations
For SAP NetWeaver AS ABAP (Web Dynpro ABAP) versions SAP UI 750, 752, 753, 754 and SAP BASIS 700, 710, 730, 731, 804, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Sap Netweaver As Abap