Unrated severityNVD Advisory· Published Nov 10, 2020· Updated Aug 4, 2024
CVE-2020-26818
CVE-2020-26818
Description
SAP NetWeaver AS ABAP (Web Dynpro), versions - 731, 740, 750, 751, 752, 753, 754, 755, 782, allows an authenticated user to access Web Dynpro components, which reveals sensitive system information that would otherwise be restricted to highly privileged users because of missing authorization, resulting in Information Disclosure.
Affected products
2- Range: = 731, 740, 750, 751, 752, 753, 754, 755, 782
- SAP SE/SAP NetWeaver AS ABAP (Web Dynpro)v5Range: < 731
Patches
Vulnerability mechanics
References
2- launchpad.support.sap.commitrex_refsource_MISC
- wiki.scn.sap.com/wiki/pages/viewpage.actionmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.