CVE Vulnerabilities

CVE-2020-6250

Published: May 12, 2020 | Modified: Jul 21, 2021
CVSS 3.x
6.8
MEDIUM
Source:
NVD
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
6.7 MEDIUM
AV:A/AC:L/Au:S/C:P/I:P/A:C
RedHat/V2
RedHat/V3
Ubuntu

SAP Adaptive Server Enterprise, version 16.0, allows an authenticated attacker to exploit certain misconfigured endpoints exposed over the adjacent network, to read system administrator password leading to Information Disclosure. This could help the attacker to read/write any data and even stop the server like an administrator.

Affected Software

Name Vendor Start Version End Version
Adaptive_server_enterprise Sap 16.0 (including) 16.0 (including)

References