CVE-2020-26824
First published: Tue Nov 10 2020(Updated: )
SAP Solution Manager (JAVA stack), version - 7.20, allows an unauthenticated attacker to compromise the system because of missing authorization checks in the Upgrade Legacy Ports Service, this has an impact to the integrity and availability of the service.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP Solution Manager | =7.20 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this SAP Solution Manager issue?
The vulnerability ID is CVE-2020-26824.
What is the severity level of CVE-2020-26824?
The severity level of CVE-2020-26824 is critical.
How does CVE-2020-26824 impact the system?
CVE-2020-26824 allows an unauthenticated attacker to compromise the system, impacting its integrity and availability.
Which version of SAP Solution Manager is affected by CVE-2020-26824?
SAP Solution Manager version 7.20 is affected by CVE-2020-26824.
Are there any references available for CVE-2020-26824?
Yes, you can find references for CVE-2020-26824 at the following links: [SAP Note 2985866](https://launchpad.support.sap.com/#/notes/2985866) and [SAP wiki page](https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=562725571).
- collector/nvd-index
- vendor/sap
- canonical/sap solution manager
- version/sap solution manager/7.20