VYPR
Unrated severityNVD Advisory· Published May 12, 2020· Updated Aug 4, 2024

CVE-2020-6262

CVE-2020-6262

Description

Service Data Download in SAP Application Server ABAP (ST-PI, before versions 2008_1_46C, 2008_1_620, 2008_1_640, 2008_1_700, 2008_1_710, 740) allows an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application and the whole ABAP system leading to Code Injection.

Affected products

3
  • SAP/ST-PIllm-fuzzy
    Range: before versions 2008_1_46C, 2008_1_620, 2008_1_640, 2008_1_700, 2008_1_710, 740
  • Range: before versions 2008_1_46C, 2008_1_620, 2008_1_640, 2008_1_700, 2008_1_710, 740
  • SAP SE/SAP Application Server ABAP (ST-PI)v5
    Range: < 2008_1_46C

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.