CVE-2020-6248

Summary

SAP Adaptive Server Enterprise (Backup Server), version 16.0, does not perform the necessary validation checks for an authenticated user while executing DUMP or LOAD command allowing arbitrary code execution or Code Injection.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Adaptive Server Enterprise (Backup Server)< 16.0affected

Weaknesses

  • Code Injection

ADP Enrichment

CVE Program Container

Additional References

References