Unrated severityNVD Advisory· Published May 12, 2020· Updated Aug 4, 2024
CVE-2020-6244
CVE-2020-6244
Description
SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories that can be executed by the application, due to uncontrolled search path element. An attacker could thereby control the behavior of the application.
Affected products
2- Range: = 7.0
- SAP SE/SAP Business Clientv5Range: < 7.0
Patches
Vulnerability mechanics
References
2- launchpad.support.sap.commitrex_refsource_MISC
- wiki.scn.sap.com/wiki/pages/viewpage.actionmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.