Get a Pentest and security assessment of your IT network.

Request a quote
2021-current

CVE-2020-26819 – SAP NetWeaver AS ABAP (Web Dynpro), versions – 731, 740, 750, 751, 752, 7

March 7, 2022

SAP NetWeaver AS ABAP (Web Dynpro), versions – 731, 740, 750, 751, 752, 753, 754, 755, 782, allows an authenticated user to access Web Dynpro components, that allows them to read and delete database logfiles because of Improper Access Control.

 

Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26819

Reference (s):

  • https://launchpad.support.sap.com/#/notes/2971954
  • URL: https://launchpad.support.sap.com/#/notes/2971954
  • https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=562725571
  • URL: https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=562725571
14
Share:
Related posts
2021-current

CVE-2004-1715 - Directory traversal vulnerability in MIMEsweeper for Web before 5.0.4 all

October 11, 2025
2021-current

CVE-2014-7793 - The CB - Calciatori Brutti (aka com.calciatori.brutti) application 1.0 fo

March 7, 2022
2021-current

CVE-2019-9721 - A denial of service in the subtitle decoder in FFmpeg 3.2 and 4.1 allows

March 7, 2022
2021-current

CVE-2020-13652 - An issue was discovered in DigDash 2018R2 before p20200528, 2019R1 before

March 7, 2022