Unrated severityNVD Advisory· Published Jul 11, 2023· Updated Nov 12, 2024
Unauthenticated blind SSRF in SAP Solution Manager (Diagnostics agent)
CVE-2023-36925
Description
SAP Solution Manager (Diagnostics agent) - version 7.20, allows an unauthenticated attacker to blindly execute HTTP requests. On successful exploitation, the attacker can cause a limited impact on confidentiality and availability of the application and other applications the Diagnostics Agent can reach.
Affected products
2- Range: = 7.20
- Range: 7.20
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.