SAP NetWeaver (ABAP Server) and ABAP Platform Code Injection Vulnerability

SAP NetWeaver (ABAP Server) and ABAP Platform Code Injection Vulnerability

CVE-2020-6296 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 753, 755, allows an attacker to inject code that can be executed by the application, leading to Code Injection. An attacker could thereby control the behavior of the application.

Learn more about our Cis Benchmark Audit For Server Software.