CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-26823

SAP Solution Manager (JAVA stack), version - 7.20, allows an unauthenticated attacker to compromise the system because of missing authorization checks in the Upgrade Diagnostics Agent Connection Service, this has an impact to the integrity and availability of the service.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.7%

CVSS Severity

CVSS v3 Score 10.0

CVSS v2 Score 6.4

References

https://launchpad.support.sap.com/#/notes/2985866
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=562725571
https://launchpad.support.sap.com/#/notes/2985866
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=562725571

Products affected by CVE-2020-26823

Sap » Solution Manager » Version: 7.20

cpe:2.3:a:sap:solution_manager:7.20

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-26823

Products

Pricing

Contact Us