← Back

CVE-2020-26808

nvd nist
Published: Nov 10, 2020Modified: Nov 21, 2024

JSON object

Loading...
7.2
Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.2 / Impact: 5.9
Source: NVD

Description

SAP AS ABAP(DMIS), versions - 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_710, 2011_1_730, 2011_1_731, 2011_1_752, 2020 and SAP S4 HANA(DMIS), versions - 101, 102, 103, 104, 105, allows an authenticated attacker to inject arbitrary code into function module leading to code injection that can be executed in the application which affects the confidentiality, availability and integrity of the application.

Affected (13)

Sap
2 products
Sap As Abap(dmis)
Sap S4 Hana(dmis)
Configuration A
13 vulnerable
Vulnerable SoftwareAffected Versions
Sap
Sap As Abap(dmis)
Version 2011_1_620
Sap As Abap(dmis)
Version 2011_1_640
Sap As Abap(dmis)
Version 2011_1_700
Sap As Abap(dmis)
Version 2011_1_710
Sap As Abap(dmis)
Version 2011_1_730
Sap As Abap(dmis)
Version 2011_1_731
Sap As Abap(dmis)
Version 2011_1_752
Sap As Abap(dmis)
Version 2020
Sap
Sap S4 Hana(dmis)
Version 101
Sap S4 Hana(dmis)
Version 102
Sap S4 Hana(dmis)
Version 103
Sap S4 Hana(dmis)
Version 104
Sap S4 Hana(dmis)
Version 105

References (8)

Source: cna@sap.com
ExploitThird Party AdvisoryVDB Entry
Source: cna@sap.com
ExploitMailing ListThird Party Advisory
Source: cna@sap.com
Permissions Required
Source: cna@sap.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitMailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Permissions Required
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.