CVE-2020-26838

Severity Score

9.1

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

SAP Business Warehouse, versions - 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 782, and SAP BW4HANA, versions - 100, 200 allows an attacker authenticated with (high) developer privileges to submit a crafted request to generate and execute code without requiring any user interaction. It is possible to craft a request which will result in the execution of Operating System commands leading to Code Injection vulnerability which could completely compromise the confidentiality, integrity and availability of the server and any data or other applications running on it.

SAP Business Warehouse, versiones: 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 782 y SAP BW4HANA, versiones: 100, 200 permite a un atacante autenticado con (altos) privilegios de desarrollador enviar una petición diseñada para generar y ejecutar código sin ser necesario una interacción del usuario. Es posible diseñar una petición que resultará en una ejecución de comandos del Sistema Operativo conllevando a una vulnerabilidad de Inyección de Código que podría comprometer completamente la confidencialidad, integridad y disponibilidad del servidor y cualquier dato u otras aplicaciones que se ejecuten en él

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

Single

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2020-10-07 CVE Reserved
2020-12-09 CVE Published
2023-03-07 EPSS Updated
2024-08-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079	2020-12-10

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Sap Search vendor "Sap"		Business Warehouse Search vendor "Sap" for product "Business Warehouse"				700 Search vendor "Sap" for product "Business Warehouse" and version "700"		-		Affected
Sap Search vendor "Sap"		Business Warehouse Search vendor "Sap" for product "Business Warehouse"				701 Search vendor "Sap" for product "Business Warehouse" and version "701"		-		Affected
Sap Search vendor "Sap"		Business Warehouse Search vendor "Sap" for product "Business Warehouse"				702 Search vendor "Sap" for product "Business Warehouse" and version "702"		-		Affected
Sap Search vendor "Sap"		Business Warehouse Search vendor "Sap" for product "Business Warehouse"				731 Search vendor "Sap" for product "Business Warehouse" and version "731"		-		Affected
Sap Search vendor "Sap"		Business Warehouse Search vendor "Sap" for product "Business Warehouse"				740 Search vendor "Sap" for product "Business Warehouse" and version "740"		-		Affected
Sap Search vendor "Sap"		Business Warehouse Search vendor "Sap" for product "Business Warehouse"				750 Search vendor "Sap" for product "Business Warehouse" and version "750"		-		Affected
Sap Search vendor "Sap"		Business Warehouse Search vendor "Sap" for product "Business Warehouse"				751 Search vendor "Sap" for product "Business Warehouse" and version "751"		-		Affected
Sap Search vendor "Sap"		Business Warehouse Search vendor "Sap" for product "Business Warehouse"				752 Search vendor "Sap" for product "Business Warehouse" and version "752"		-		Affected
Sap Search vendor "Sap"		Business Warehouse Search vendor "Sap" for product "Business Warehouse"				753 Search vendor "Sap" for product "Business Warehouse" and version "753"		-		Affected
Sap Search vendor "Sap"		Business Warehouse Search vendor "Sap" for product "Business Warehouse"				754 Search vendor "Sap" for product "Business Warehouse" and version "754"		-		Affected
Sap Search vendor "Sap"		Business Warehouse Search vendor "Sap" for product "Business Warehouse"				755 Search vendor "Sap" for product "Business Warehouse" and version "755"		-		Affected
Sap Search vendor "Sap"		Business Warehouse Search vendor "Sap" for product "Business Warehouse"				782 Search vendor "Sap" for product "Business Warehouse" and version "782"		-		Affected
Sap Search vendor "Sap"		Bw\/4hana Search vendor "Sap" for product "Bw\/4hana"				100 Search vendor "Sap" for product "Bw\/4hana" and version "100"		-		Affected
Sap Search vendor "Sap"		Bw\/4hana Search vendor "Sap" for product "Bw\/4hana"				200 Search vendor "Sap" for product "Bw\/4hana" and version "200"		-		Affected