CVE-2020-6270 vulnerability in SAP Products
Published on June 10, 2020
SAP NetWeaver AS ABAP (Banking Services), versions - 710, 711, 740, 750, 751, 752, 75A, 75B, 75C, 75D, 75E, does not perform necessary authorization checks for an authenticated user due to Missing Authorization Check, allowing wrong and unexpected change of individual conditions by a malicious user leading to wrong prices.
Products Associated with CVE-2020-6270
stack.watch emails you whenever new vulnerabilities are published in SAP Netweaver As Abap or SAP Netweaver Application Server Abap. Just hit a watch button to start following.
Affected Versions
SAP SE SAP NetWeaver AS ABAP (Banking Services):- Version < 710 is affected.
- Version < 711 is affected.
- Version < 740 is affected.
- Version < 750 is affected.
- Version < 751 is affected.
- Version < 752 is affected.
- Version < 75A is affected.
- Version < 75B is affected.
- Version < 75C is affected.
- Version < 75D is affected.
- Version < 75E is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.