Vulnerabilities > CVE-2020-26814 - Unspecified vulnerability in SAP Process Integration (Pgp Module - Business-To-Business ADD On) 1.0

047910
CVSS 4.9 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
sap

Summary

SAP Process Integration (PGP Module - Business-to-Business Add On), version - 1.0, allows an attacker to read PGP Keys under certain conditions in the PGP Module of Business-to-Business Add-On, these keys can then be used to read messages processed by the module leading to Information Disclosure.

Vulnerable Configurations

Part Description Count
Application
Sap
1