What versions of SAP NetWeaver (ABAP Server) and ABAP Platform are affected?

Versions 740, 750, 751, 752, 753, 754, and 755 are affected.

What is the severity of vulnerability CVE-2020-6299?

The severity of CVE-2020-6299 is medium with a CVSS score of 4.3.

How can the SAP NetWeaver (ABAP Server) and ABAP Platform vulnerability be fixed?

Apply the necessary security patches provided by SAP.

Where can I find more information about the SAP NetWeaver (ABAP Server) and ABAP Platform vulnerability?

You can find more information at the following references: [Link 1](https://launchpad.support.sap.com/#/notes/2941510), [Link 2](https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552603345).

Vulnerability/
CVE-2020-6299

medium

4.3

12/8/2020

4/8/2024

CVE-2020-6299

First published: Wed Aug 12 2020(Updated: )

SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 740, 750, 751, 752, 753, 754, 755, allows a business user to access the list of users in the given system using value help, leading to Information Disclosure.

Credit: cna@sap.com

Affected Software	Affected Version	How to fix
SAP ABAP Platform	=740
SAP ABAP Platform	=750
SAP ABAP Platform	=751
SAP ABAP Platform	=753
SAP ABAP Platform	=754
SAP ABAP Platform	=755
SAP NetWeaver Application Server ABAP	=740
SAP NetWeaver Application Server ABAP	=750
SAP NetWeaver Application Server ABAP	=751
SAP NetWeaver Application Server ABAP	=753
SAP NetWeaver Application Server ABAP	=754
SAP NetWeaver Application Server ABAP	=755

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the SAP NetWeaver (ABAP Server) and ABAP Platform vulnerability?
It allows a business user to access the list of users in the given system using value help, leading to Information Disclosure.
What versions of SAP NetWeaver (ABAP Server) and ABAP Platform are affected?
Versions 740, 750, 751, 752, 753, 754, and 755 are affected.
What is the severity of vulnerability CVE-2020-6299?
The severity of CVE-2020-6299 is medium with a CVSS score of 4.3.
How can the SAP NetWeaver (ABAP Server) and ABAP Platform vulnerability be fixed?
Apply the necessary security patches provided by SAP.
Where can I find more information about the SAP NetWeaver (ABAP Server) and ABAP Platform vulnerability?
You can find more information at the following references: [Link 1](https://launchpad.support.sap.com/#/notes/2941510), [Link 2](https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=552603345).

collector/nvd-index
agent/severity
agent/author
agent/references
agent/description
agent/type
agent/event
agent/softwarecombine
agent/last-modified-date
agent/first-publish-date
agent/tags
collector/mitre-cve
source/MITRE
vendor/sap
canonical/sap abap platform
version/sap abap platform/740
version/sap abap platform/750
version/sap abap platform/751
version/sap abap platform/753
version/sap abap platform/754
version/sap abap platform/755
canonical/sap netweaver application server abap
version/sap netweaver application server abap/740
version/sap netweaver application server abap/750
version/sap netweaver application server abap/751
version/sap netweaver application server abap/753
version/sap netweaver application server abap/754
version/sap netweaver application server abap/755

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.