Vulnerabilities > CVE-2020-6299 - Unspecified vulnerability in SAP Abap Platform and Netweaver Application Server Abap

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

sap

NVD

Published: 2020-08-12

Updated: 2022-10-05

Summary

SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 740, 750, 751, 752, 753, 754, 755, allows a business user to access the list of users in the given system using value help, leading to Information Disclosure.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP Abap Platform 751 SAP Abap Platform 753 SAP Abap Platform 755 SAP Abap Platform 740 SAP Abap Platform 750 SAP Abap Platform 754 SAP Netweaver Application Server Abap 750 SAP Netweaver Application Server Abap 753 SAP Netweaver Application Server Abap 754 SAP Netweaver Application Server Abap 740 SAP Netweaver Application Server Abap 751 SAP Netweaver Application Server Abap 755	12

Summary

Vulnerable Configurations

References