Unrated severityNVD Advisory· Published Jan 14, 2020· Updated Aug 4, 2024
CVE-2020-6304
CVE-2020-6304
Description
Improper input validation in SAP NetWeaver Internet Communication Manager (update provided in KRNL32NUC & KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT KRNL64NUC & KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49 KERNEL 7.21, 7.49, 7.53) allows an attacker to prevent users from accessing its services through a denial of service.
Affected products
6- SAP SE/SAP NetWeaver Internet Communication Manager (KERNEL)v5Range: < 7.21
- SAP SE/SAP NetWeaver Internet Communication Manager (KRNL32NUC)v5Range: < 7.21
- SAP SE/SAP NetWeaver Internet Communication Manager (KRNL32UC)v5Range: < 7.21
- SAP SE/SAP NetWeaver Internet Communication Manager (KRNL64NUC)v5Range: < 7.21
- SAP SE/SAP NetWeaver Internet Communication Manager (KRNL64UC)v5Range: < 7.21
Patches
Vulnerability mechanics
References
2- launchpad.support.sap.commitrex_refsource_MISC
- wiki.scn.sap.com/wiki/pages/viewpage.actionmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.