CVE-2020-6250

Name of the Vulnerable Software and Affected Versions SAP Adaptive Server Enterprise version 16.0

Description The issue allows an authenticated attacker to exploit certain misconfigured endpoints exposed over the adjacent network, to read the system administrator password, leading to information disclosure. This could enable the attacker to read or write any data and even stop the server with administrator privileges.

Recommendations For SAP Adaptive Server Enterprise version 16.0, consider restricting access to the misconfigured endpoints exposed over the adjacent network as a temporary workaround until a patch is available. Additionally, review and secure the configuration of the endpoints to prevent unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.