Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2020-6287

SAP | NetWeaverAdded 2021-11-03Remediation Deadline 2022-05-03

SAP NetWeaver Missing Authentication for Critical Function Vulnerability

SAP NetWeaver Application Server Java Platforms contains a missing authentication for critical function vulnerability allowing unauthenticated access to execute configuration tasks and create administrative users.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-306

References