3 matches found
CVE-2020-6248
SAP Adaptive Server Enterprise Backup Server, version 16.0, does not perform the necessary validation checks for an authenticated user while executing DUMP or LOAD command allowing arbitrary code execution or Code Injection...
Newly Patched SAP ASE Flaws Could Let Attackers Hack Database Servers
A new set of critical vulnerabilities uncovered in SAP's Sybase database software can grant unprivileged attackers complete control over a targeted database and even the underlying operating system in certain scenarios. The six flaws, disclosed by cybersecurity firm Trustwave today, reside in...
CVE-2020-6248
CVE-2020-6248 affects SAP Adaptive Server Enterprise (Backup Server) 16.0. The issue arises because the server does not perform required validation for an authenticated user during DUMP/LOAD, enabling arbitrary code execution or code injection. Related sources describe potential database takeover...