EUVD-2020-27420

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

SAP NetWeaver AS ABAP lacks necessary authorization checks, risking wrong pricing by malicious users.

Reporter	Title	Published	Views	Family All 8
CNVD	Unspecified Vulnerability in SAP NetWeaver AS ABAP (CNVD-2021-25380)	11 Jun 202000:00	–	cnvd
CVE	CVE-2020-6270	10 Jun 202012:36	–	cve
Cvelist	CVE-2020-6270	10 Jun 202012:36	–	cvelist
NVD	CVE-2020-6270	10 Jun 202013:15	–	nvd
OSV	CVE-2020-6270	10 Jun 202013:15	–	osv
Prion	Authorization	10 Jun 202013:15	–	prion
Positive Technologies	PT-2020-19065 · Sap · Sap Netweaver As Abap	10 Jun 202000:00	–	ptsecurity
RedhatCVE	CVE-2020-6270	22 May 202515:38	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "8861dc44-ab1b-32c6-bfa3-b790a13c2bde",
        "vendor": {
          "name": "SAP SE"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "13c796a2-1f04-3362-94f7-b275c9055c4a",
        "product": {
          "name": "SAP NetWeaver AS ABAP (Banking Services)"
        },
        "product_version": "< 740"
      },
      {
        "id": "1c8a846a-576f-326b-85f5-3b95268aa526",
        "product": {
          "name": "SAP NetWeaver AS ABAP (Banking Services)"
        },
        "product_version": "< 75A"
      },
      {
        "id": "2d4ffa14-0722-3821-9a8b-2b7b3e24daa5",
        "product": {
          "name": "SAP NetWeaver AS ABAP (Banking Services)"
        },
        "product_version": "< 75E"
      },
      {
        "id": "351b2161-f960-3ebf-9fe2-dec7d490a58e",
        "product": {
          "name": "SAP NetWeaver AS ABAP (Banking Services)"
        },
        "product_version": "< 75D"
      },
      {
        "id": "543fe1df-575b-3f5c-bb55-b3b3c55284f6",
        "product": {
          "name": "SAP NetWeaver AS ABAP (Banking Services)"
        },
        "product_version": "< 711"
      },
      {
        "id": "6c15a580-5e23-3a8a-a525-a288593caa0d",
        "product": {
          "name": "SAP NetWeaver AS ABAP (Banking Services)"
        },
        "product_version": "< 75C"
      },
      {
        "id": "6f227d56-3a28-3220-bbdd-b6aee2fdb83c",
        "product": {
          "name": "SAP NetWeaver AS ABAP (Banking Services)"
        },
        "product_version": "< 75B"
      },
      {
        "id": "7152d0a8-3542-3af9-8050-7b61f5d3adae",
        "product": {
          "name": "SAP NetWeaver AS ABAP (Banking Services)"
        },
        "product_version": "< 752"
      },
      {
        "id": "d0611409-bbea-3556-a576-edb7d3a9216f",
        "product": {
          "name": "SAP NetWeaver AS ABAP (Banking Services)"
        },
        "product_version": "< 751"
      },
      {
        "id": "d53d6454-5857-3b4e-b798-e504e77d0f3f",
        "product": {
          "name": "SAP NetWeaver AS ABAP (Banking Services)"
        },
        "product_version": "< 750"
      },
      {
        "id": "e1c1cb61-e298-305d-a5e8-e880fd0e5528",
        "product": {
          "name": "SAP NetWeaver AS ABAP (Banking Services)"
        },
        "product_version": "< 710"
      }
    ]
  }
]

Source	Link
wiki	www.wiki.scn.sap.com/wiki/pages/viewpage.action
launchpad	www.launchpad.support.sap.com/
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.6Medium risk

Vulners AI Score6.6

CVSS 36.5

CVSS 24

CVSS 3.16.5

EPSS0.00804