Lucene search

K

SAP Solution Manager (User Experience Monitoring) Security Vulnerabilities

cve
cve

CVE-2020-26837

SAP Solution Manager 7.2 (User Experience Monitoring), version - 7.2, allows an authenticated user to upload a malicious script that can exploit an existing path traversal vulnerability to compromise confidentiality exposing elements of the file system, partially compromise integrity allowing the.....

9.1CVSS

8.9AI Score

0.002EPSS

2020-12-09 05:15 PM
12
cve
cve

CVE-2020-26830

SAP Solution Manager 7.2 (User Experience Monitoring), version - 7.2, does not perform necessary authorization checks for an authenticated user. Due to inadequate access control, a network attacker authenticated as a regular user can use operations which should be restricted to administrators....

8.1CVSS

7.9AI Score

0.001EPSS

2020-12-09 05:15 PM
21
cve
cve

CVE-2020-6207

SAP Solution Manager (User Experience Monitoring), version- 7.2, due to Missing Authentication Check does not perform any authentication for a service resulting in complete compromise of all SMDAgents connected to the Solution...

9.8CVSS

9.5AI Score

0.974EPSS

2020-03-10 09:15 PM
1073
In Wild
70