2 matches found
Authentication flaw
SAP NetWeaver AS JAVA P2P Cluster Communication, versions - 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows arbitrary connections from processes because of missing authentication check, that are outside the cluster and even outside the network segment dedicated for the internal cluster communication. ...
CVE-2020-26829
SAP NetWeaver AS JAVA P2P Cluster Communication (versions 7.11–7.50) is affected by CVE-2020-26829 due to a missing authentication check, enabling an unauthenticated attacker to initiate privileged actions that are normally restricted to administrators, including access to system administration f...