SAP Solution Manager (Problem Context Manager), version 7.2, does not perform the necessary authentication, allowing an attacker to consume large amounts of memory, causing the system to crash and read restricted data (files visible for technical administration users of the diagnostics agent).
References
Link | Resource |
---|---|
https://launchpad.support.sap.com/#/notes/2931391 | Permissions Required |
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=547426775 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: sap
Published: 2020-06-10T12:38:29
Updated: 2020-06-10T12:38:29
Reserved: 2020-01-08T00:00:00
Link: CVE-2020-6271
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-06-10T13:15:18.573
Modified: 2020-06-16T15:17:36.137
Link: CVE-2020-6271
JSON object: View
Redhat Information
No data.
CWE