Lucene search
+L

11 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 2:44 p.m.6 views

CVE-2020-6207

SAP Solution Manager User Experience Monitoring, version- 7.2, due to Missing Authentication Check does not perform any authentication for a service resulting in complete compromise of all SMDAgents connected to the Solution Manager...

10CVSS7.1AI score0.98266EPSS
Exploits7References1
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.256 views

SAP Solution Manager Remote Unauthorized OS Commands Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SAP Solution Manager remote unauthorized OS commands execution', 'License' = MSFLICENSE, 'Author' = 'Yvan Genuer', @1ggy The researcher who...

10CVSS7.2AI score0.98266EPSS
Exploits7
Metasploit
Metasploit
added 2021/03/26 5:42 p.m.102 views

SAP Solution Manager remote unauthorized OS commands execution

This module exploits the CVE-2020-6207 vulnerability within the SAP EEM servlet tcsmdagentapplicationeem of SAP Solution Manager SolMan running version 7.2. The vulnerability occurs due to missing authentication checks when submitting a SOAP request to the /EemAdminService/EemAdmin page to get...

10CVSS9.5AI score0.98266EPSS
Exploits7
0day.today
0day.today
added 2021/03/26 12:0 a.m.126 views

SAP Solution Manager 7.2 Remote Command Execution Exploit

This Metasploit module exploits the CVE-2020-6207 vulnerability within the SAP EEM servlet of SAP Solution Manager SolMan running version 7.2. The vulnerability occurs due to missing authentication checks when submitting a SOAP request to the /EemAdminService/EemAdmin page to get information abou...

10CVSS0.5AI score0.98266EPSS
Exploits7
Packet Storm
Packet Storm
added 2021/03/26 12:0 a.m.427 views

SAP Solution Manager 7.2 Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SAP Solution Manager remote unauthorized OS commands execution', 'License' = MSFLICENSE, 'Author' = 'Yvan Genuer', @1ggy The researcher who...

7.5CVSS0.1AI score0.98266EPSS
Exploits7
Check Point Advisories
Check Point Advisories
added 2021/03/20 12:0 a.m.53 views

SAP Solution Manager Remote Code Execution (CVE-2020-6207)

A remote code execution vulnerability exists in SAP Solution Manager. The vulnerability is due to a lack of authentication in the User Experience Monitoring componant. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted request to the target server. Successful...

10CVSS4.3AI score0.98266EPSS
Exploits7
The Hacker News
The Hacker News
added 2021/01/23 8:43 a.m.7 views

Beware! Fully-Functional Exploit Released Online for SAP Solution Manager Flaw

Cybersecurity researchers have warned of a publicly available fully-functional exploit that could be used to target SAP enterprise software. The exploit leverages a vulnerability, tracked as CVE-2020-6207, that stems from a missing authentication check in SAP Solution Manager SolMan version 7.2 S...

10CVSS7.6AI score0.98266EPSS
Exploits7
The Hacker News
The Hacker News
added 2021/01/23 8:43 a.m.202 views

Beware! Fully-Functional Exploit Released Online for SAP Solution Manager Flaw

Cybersecurity researchers have warned of a publicly available fully-functional exploit that could be used to target SAP enterprise software. The exploit leverages a vulnerability, tracked as CVE-2020-6207, that stems from a missing authentication check in SAP Solution Manager SolMan version 7.2 S...

10CVSS1AI score0.98266EPSS
Exploits7
Circl
Circl
added 2021/01/15 3:33 a.m.8 views

CVE-2020-6207

creationtimestamp| type| source ---|---|--- 2021-01-15 03:33:25+00:00| published-proof-of-concept| Telegram/mzMPJUtI8bSjYe6VDdVcO-nYDGgxJsJcGR3bIyj6eBfmw 2021-01-16 11:50:06+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2506 2021-01-23 09:55:55+00:00|...

10CVSS7.5AI score0.98266EPSS
Exploits7References10
CVE
CVE
added 2020/03/10 8:20 p.m.1289 views

CVE-2020-6207

CVE-2020-6207 affects SAP Solution Manager 7.2, specifically the End User Experience Monitoring (EEM) servlet. The vulnerability is due to missing authentication checks, allowing unauthenticated access that can compromise all connected SMDAgents and enables remote code execution or command execut...

10CVSS9.5AI score0.98266EPSS
In wildExploits7References8Affected Software1
NCSC
NCSC
added 2020/03/10 12:0 a.m.10 views

Fixed several vulnerabilities in SAP products.

Vulnerabilities have been fixed in SAP products. The vulnerabilities enable a malicious person to launch attacks that lead to the following categories of damage: Cross-Site Scripting XSS SQL Injection Denial-of-Service DoS. Remote code execution User Rights Access to sensitive data SAP reports a...

10CVSS7.1AI score0.98266EPSS
Exploits7
Rows per page
Query Builder