SAML Authentication Vulnerability in SAP HANA Database 2.0
CVE-2020-26834

4.2MEDIUM

Key Information:

Vendor: SAP
Status: SAP Hana Database
Vendor: CVE Published:; 9 December 2020

Summary

SAP HANA Database version 2.0 contains an authentication issue where the application fails to properly validate usernames during SAML bearer token-based user authentication. This vulnerability enables attackers to manipulate a legitimate SAML bearer token and authenticate as a user whose full name matches the truncated username in the token, potentially leading to unauthorized access to sensitive resources within the database.

Affected Version(s)

SAP HANA Database < 2.0

References

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageI...

x_refsource_MISC

https://launchpad.support.sap.com/#/notes/2978768

x_refsource_MISC

CVSS V3.1

Score:

4.2

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 9, 2020
Vulnerability Reserved
Oct 7, 2020