CVE-2020-26823
First published: Tue Nov 10 2020(Updated: )
SAP Solution Manager (JAVA stack), version - 7.20, allows an unauthenticated attacker to compromise the system because of missing authorization checks in the Upgrade Diagnostics Agent Connection Service, this has an impact to the integrity and availability of the service.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP Solution Manager | =7.20 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-26823?
The severity of CVE-2020-26823 is critical.
How does CVE-2020-26823 affect SAP Solution Manager?
CVE-2020-26823 allows an unauthenticated attacker to compromise the system, impacting the integrity and availability of the service.
Which version of SAP Solution Manager is affected by CVE-2020-26823?
SAP Solution Manager version 7.20 is affected by CVE-2020-26823.
What is the impact of CVE-2020-26823?
CVE-2020-26823 can result in the compromise of the system, potentially leading to unauthorized access and data manipulation.
Are there any available fixes for CVE-2020-26823?
It is recommended to apply the necessary patches provided by SAP to mitigate CVE-2020-26823.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/weakness
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/sap
- canonical/sap solution manager
- version/sap solution manager/7.20