CVE-2020-6240 | Vulnerability Database | Aqua Security

SAP NetWeaver AS ABAP (Web Dynpro ABAP), versions (SAP_UI 750, 752, 753, 754 and SAP_BASIS 700, 710, 730, 731, 804) allows an unauthenticated attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service leading to Denial of Service

Affected Software

Name	Vendor	Start Version	End Version
Netweaver_application_server_abap	Sap	700 (including)	700 (including)
Netweaver_application_server_abap	Sap	710 (including)	710 (including)
Netweaver_application_server_abap	Sap	730 (including)	730 (including)
Netweaver_application_server_abap	Sap	731 (including)	731 (including)
Netweaver_application_server_abap	Sap	750 (including)	750 (including)
Netweaver_application_server_abap	Sap	752 (including)	752 (including)
Netweaver_application_server_abap	Sap	753 (including)	753 (including)
Netweaver_application_server_abap	Sap	754 (including)	754 (including)
Netweaver_application_server_abap	Sap	804 (including)	804 (including)

References

https://launchpad.support.sap.com/#/notes/2856923
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=545396222

NVD	https://nvd.nist.gov/vuln/detail/CVE-2020-6240
CWE	https://cwe.mitre.org/data/definitions/.html