CVE-2013-6820

Published: Nov 20, 2013Modified: Apr 29, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Unrestricted file upload vulnerability in the SAP NetWeaver Development Infrastructure (NWDI) allows remote attackers to execute arbitrary code by uploading a file with an executable extension via unspecified vectors.

Affected (1)

Products: Sap: Netweaver Development Infrastructure

Sap

1 product

Netweaver Development Infrastructure

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Sap Netweaver Development Infrastructure	All versions

References (6)

http://scn.sap.com/docs/DOC-8218

Source: cve@mitre.org

https://erpscan.io/advisories/dsecrg-13-004-sap-netweaver-di-arbitrary-file-upload/

Source: cve@mitre.org

https://service.sap.com/sap/support/notes/1757675

Source: cve@mitre.org

http://scn.sap.com/docs/DOC-8218

Source: af854a3a-2127-422b-91ae-364da2661108

https://erpscan.io/advisories/dsecrg-13-004-sap-netweaver-di-arbitrary-file-upload/

Source: af854a3a-2127-422b-91ae-364da2661108

https://service.sap.com/sap/support/notes/1757675

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.