Multiple vulnerabilities in SAP NetWeaver



Published: 2020-07-14
Risk High
Patch available YES
Number of vulnerabilities 5
CVE-ID CVE-2020-6287
CVE-2020-6285
CVE-2020-6282
CVE-2020-6280
CVE-2020-6286
CWE-ID CWE-20
CWE-200
CWE-352
Exploitation vector Network
Public exploit Vulnerability #1 is being exploited in the wild.
Public exploit code for vulnerability #2 is available.
Public exploit code for vulnerability #3 is available.
Public exploit code for vulnerability #4 is available.
Public exploit code for vulnerability #5 is available.
Vulnerable software
Subscribe
SAP NetWeaver
Server applications / Application servers

Vendor SAP

Security Bulletin

This security bulletin contains information about 5 vulnerabilities.

1) Input validation error

EUVDB-ID: #VU29709

Risk: High

CVSSv3.1:

CVE-ID: CVE-2020-6287

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to multiple unspecified issues within the SAP NetWeaver AS JAVA (LM Configuration Wizard). A remote non-authenticated attacker can send specially crafted request to the application and execute arbitrary code on the system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

SAP NetWeaver: 7.30 - 7.50


CPE2.3 External links

http://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552599675

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

2) Information disclosure

EUVDB-ID: #VU29710

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2020-6285

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote user to gain access to potentially sensitive information.

The vulnerability exists due to unspecified error within the SAP NetWeaver (XML Toolkit for JAVA). A remote authenticated user can gain unauthorized access to sensitive information on the system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

SAP NetWeaver: 7.10 - 7.50


CPE2.3 External links

http://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552599675

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

3) Cross-site request forgery

EUVDB-ID: #VU29711

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2020-6282

CWE-ID: CWE-352 - Cross-Site Request Forgery (CSRF)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform cross-site request forgery attacks.

The vulnerability exists due to insufficient validation of the HTTP request origin within SAP NetWeaver AS JAVA (IIOP service) for both service core and core-tools deployments. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

SAP NetWeaver: 7.10 - 7.50


CPE2.3 External links

http://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552599675

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

4) Information disclosure

EUVDB-ID: #VU29712

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2020-6280

CWE-ID: CWE-200 - Information Exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to unspecified error within the SAP NetWeaver (ABAP Server) and ABAP Platform. A remote privileged user can gain access to potentially sensitive information.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

SAP NetWeaver: 7.31 - 7.50


CPE2.3 External links

http://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552599675

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

5) Input validation error

EUVDB-ID: #VU29717

Risk: High

CVSSv3.1:

CVE-ID: CVE-2020-6286

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to unspecified error in the LM Configuration Wizard component. A remote attacker can execute arbitrary code on the target system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

SAP NetWeaver: 7.30 - 7.50


CPE2.3 External links

http://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552599675

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?



###SIDEBAR###