CVE-2020-26838

high-risk
Published 2020-12-09

SAP Business Warehouse, versions - 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 782, and SAP BW4HANA, versions - 100, 200 allows an attacker authenticated with (high) developer privileges to submit a crafted request to generate and execute code without requiring any user interaction. It is possible to craft a request which will result in the execution of Operating System commands leading to Code Injection vulnerability which could completely compromise the confidentiality, integrity and availability of the server and any data or other applications running on it.

Do I need to act?

~
2.0% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.1/10 Critical
NETWORK / LOW complexity

Affected Products (14)

Business Warehouse
Business Warehouse
Business Warehouse
Business Warehouse
Business Warehouse
Business Warehouse
Business Warehouse
Business Warehouse
Business Warehouse
Business Warehouse
Business Warehouse
Business Warehouse
Bw\/4Hana
Bw\/4Hana

Affected Vendors

Sap

References (4)

Permissions Required https://launchpad.support.sap.com/#/notes/2983367
Vendor Advisory https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079
Permissions Required https://launchpad.support.sap.com/#/notes/2983367
Vendor Advisory https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079
54
/ 100
high-risk
Severity 31/34 · Critical
Exploitability 5/34 · Minimal
Exposure 18/34 · Moderate