Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2020-6318 | First vendor Publication | 2020-09-09 |
Vendor | Cve | Last vendor Modification | 2022-07-01 |
Security-Database Scoring CVSS v3
Cvss vector : CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H | |||
---|---|---|---|
Overall CVSS Score | 7.2 | ||
Base Score | 7.2 | Environmental Score | 7.2 |
impact SubScore | 5.9 | Temporal Score | 7.2 |
Exploitabality Sub Score | 1.2 | ||
Attack Vector | Network | Attack Complexity | Low |
Privileges Required | High | User Interaction | None |
Scope | Unchanged | Confidentiality Impact | High |
Integrity Impact | High | Availability Impact | High |
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:S/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 6.5 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Low |
Cvss Expoit Score | 8 | Authentication | Requires single instance |
Calculate full CVSS 2.0 Vectors scores |
Detail
A Remote Code Execution vulnerability exists in the SAP NetWeaver (ABAP Server, up to release 7.40) and ABAP Platform (> release 7.40).Because of this, an attacker can exploit these products via Code Injection, and potentially enabling to take complete control of the products, including viewing, changing, or deleting data by injecting code into the working memory which is subsequently executed by the application. It can also be used to cause a general fault in the product, causing the products to terminate. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6318 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
CPE : Common Platform Enumeration
Sources (Detail)
Alert History
Date | Informations |
---|---|
2022-07-02 00:27:43 |
|
2022-05-20 02:06:15 |
|
2022-05-20 01:52:38 |
|
2022-05-20 00:27:55 |
|
2022-05-19 09:27:45 |
|
2021-05-04 14:01:14 |
|
2021-04-22 03:08:06 |
|
2020-09-15 21:23:19 |
|
2020-09-09 21:23:12 |
|
2020-09-09 17:22:52 |
|