CVE-2020-6187 Information
Feb 14, 2021
cve
Description
SAP NetWeaver (Guided Procedures) versions 7.10 7.11 7.20 7.30 7.31 7.40 7.50 does not sufficiently validate an XML document input from a compromised admin leading to Denial of Service.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Reference
https://launchpad.support.sap.com//notes/2864415 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=537788812
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction Required
HIGH
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
NONE
Availability Impact
NONE
Base Score
HIGH
Base Severity
4.9
Share on: