Authorization Bypass in SAP Solution Manager (JAVA Stack)
CVE-2020-26824
10CRITICAL
Key Information:
- Vendor
SAP
- Vendor
- CVE Published:
- 10 November 2020
What is CVE-2020-26824?
SAP Solution Manager's JAVA stack version 7.20 contains an authorization bypass vulnerability within the Upgrade Legacy Ports Service. An unauthenticated attacker could leverage this flaw to gain unauthorized access to the system, thereby affecting the integrity and availability of the services. It is crucial for organizations using this version to assess their security measures and apply appropriate patches to mitigate potential risks associated with this vulnerability.
Affected Version(s)
SAP Solution Manager (JAVA stack) < 7.20