CVE-2020-6299

Sažetak

SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 740, 750, 751, 752, 753, 754, 755, allows a business user to access the list of users in the given system using value help, leading to Information Disclosure.

Reference

https://launchpad.support.sap.com/#/notes/2941510
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552603345

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

05-10-2022 - 14:16

Objavljeno

12-08-2020 - 14:15