Missing Authentication in SAP Solution Manager (Diagnostics Agent) 7.2 Collector Simulator Functionality

CVE-2020-6235 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

SAP Solution Manager (Diagnostics Agent), version 7.2, does not perform the authentication check for the functionalities of the Collector Simulator, leading to Missing Authentication.

Learn more about our Web Application Penetration Testing UK.