CVE-2020-6252

Published: May 12, 2020Modified: Nov 21, 2024

8.0

Vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.1 / Impact: 5.9

Source: NVD

Description

Under certain conditions SAP Adaptive Server Enterprise (Cockpit), version 16.0, allows an attacker with access to local network, to get sensitive and confidential information, leading to Information Disclosure. It can be used to get user account credentials, tamper with system data and impact system availability.

Affected (1)

Products: Sap: Adaptive Server Enterprise Cockpit

1 product

Adaptive Server Enterprise Cockpit

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Sap Adaptive Server Enterprise Cockpit	Version 16.0

References (4)

https://launchpad.support.sap.com/#/notes/2917090

Source: cna@sap.com

Permissions Required

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=545396222

Source: cna@sap.com

Vendor Advisory

https://launchpad.support.sap.com/#/notes/2917090

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions Required

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=545396222

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.