Privilege Escalation in SAP Host Agent 7.21: Exploiting Operation Framework for Root Access

Privilege Escalation in SAP Host Agent 7.21: Exploiting Operation Framework for Root Access

CVE-2020-6234 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

SAP Host Agent, version 7.21, allows an attacker with admin privileges to use the operation framework to gain root privileges over the underlying operating system, leading to Privilege Escalation.

Learn more about our Web Application Penetration Testing UK.