Multiple vulnerabilities in SAP NetWeaver
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 5 |
| CVE-ID | CVE-2020-6287 CVE-2020-6285 CVE-2020-6282 CVE-2020-6280 CVE-2020-6286 |
| CWE-ID | CWE-20 CWE-200 CWE-352 |
| Exploitation vector | Network |
| Public exploit |
Vulnerability #1 is being exploited in the wild. Public exploit code for vulnerability #2 is available. Public exploit code for vulnerability #3 is available. Public exploit code for vulnerability #4 is available. Public exploit code for vulnerability #5 is available. |
| Vulnerable software Subscribe |
SAP NetWeaver Server applications / Application servers |
| Vendor | SAP |
Security Bulletin
This security bulletin contains information about 5 vulnerabilities.
1) Input validation error
EUVDB-ID: #VU29709
Risk: High
CVSSv3.1:
CVE-ID: CVE-2020-6287
CWE-ID:
Exploit availability:
DescriptionThe vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to multiple unspecified issues within the SAP NetWeaver AS JAVA (LM Configuration Wizard). A remote non-authenticated attacker can send specially crafted request to the application and execute arbitrary code on the system.
Install updates from vendor's website.
Vulnerable software versionsSAP NetWeaver: 7.30 - 7.50
Fixed software versionsCPE2.3 External links
http://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552599675
Q & A
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?
2) Information disclosure
EUVDB-ID: #VU29710
Risk: Low
CVSSv3.1:
CVE-ID: CVE-2020-6285
CWE-ID:
Exploit availability:
DescriptionThe vulnerability allows a remote user to gain access to potentially sensitive information.
The vulnerability exists due to unspecified error within the SAP NetWeaver (XML Toolkit for JAVA). A remote authenticated user can gain unauthorized access to sensitive information on the system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsSAP NetWeaver: 7.10 - 7.50
Fixed software versionsCPE2.3 External links
http://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552599675
Q & A
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?
3) Cross-site request forgery
EUVDB-ID: #VU29711
Risk: Medium
CVSSv3.1:
CVE-ID: CVE-2020-6282
CWE-ID:
Exploit availability:
DescriptionThe vulnerability allows a remote attacker to perform cross-site request forgery attacks.
The vulnerability exists due to insufficient validation of the HTTP request origin within SAP NetWeaver AS JAVA (IIOP service) for both service core and core-tools deployments. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website.
MitigationInstall updates from vendor's website.
Vulnerable software versionsSAP NetWeaver: 7.10 - 7.50
Fixed software versionsCPE2.3 External links
http://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552599675
Q & A
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?
4) Information disclosure
EUVDB-ID: #VU29712
Risk: Low
CVSSv3.1:
CVE-ID: CVE-2020-6280
CWE-ID:
Exploit availability:
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to unspecified error within the SAP NetWeaver (ABAP Server) and ABAP Platform. A remote privileged user can gain access to potentially sensitive information.
Install updates from vendor's website.
Vulnerable software versionsSAP NetWeaver: 7.31 - 7.50
Fixed software versionsCPE2.3 External links
http://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552599675
Q & A
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?
5) Input validation error
EUVDB-ID: #VU29717
Risk: High
CVSSv3.1:
CVE-ID: CVE-2020-6286
CWE-ID:
Exploit availability:
DescriptionThe vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to unspecified error in the LM Configuration Wizard component. A remote attacker can execute arbitrary code on the target system.
Install updates from vendor's website.
Vulnerable software versionsSAP NetWeaver: 7.30 - 7.50
Fixed software versionsCPE2.3 External links
http://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552599675
Q & A
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?
