cnvd - cnvd-2020-65695

cnvd-2020-65695

Vulnerability from cnvd

Title: SAP Solution Manager和Focused Run身份验证不当漏洞

Description:

SAP Solution Manager和SAP Focused Run都是德国思爱普（SAP）公司的产品。SAP Solution Manager是一套集系统监控、SAP支持桌面、自助服务、ASAP实施等多个功能为一体的系统管理平台。该平台可以帮助客户建立SAP解决方案的生命周期管理，并提供系统监控、远程支持服务和SAP产品组件升级等功能。SAP Focused Run是一个数据中心和大客户系统运维管理方案(高容量监控,警报,诊断和分析的终极解决方案)。

SAP Solution Manager和SAP Focused Run WILY_INTRO_ENTERPRISE 9.7、10.1、10.5和10.7版本存在身份验证不当漏洞。如管理员未更改Admin和Guest的默认密码，攻击者可利用该漏洞绕过身份验证。

Severity: 低

Patch Name: SAP Solution Manager和Focused Run身份验证不当漏洞的补丁

Patch Description:

SAP Solution Manager和SAP Focused Run WILY_INTRO_ENTERPRISE 9.7、10.1、10.5和10.7版本存在身份验证不当漏洞。如管理员未更改Admin和Guest的默认密码，攻击者可利用该漏洞绕过身份验证。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接：https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=558632196

Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-6369

Impacted products

Name
['SAP SAP Focused Run 9.7', 'SAP SAP Focused Run 10.1', 'SAP SAP Focused Run 10.5', 'SAP SAP Focused Run 10.7', 'SAP SAP Solution Manager 9.7', 'SAP SAP Solution Manager 10.1', 'SAP SAP Solution Manager 10.5', 'SAP SAP Solution Manager 10.7']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-6369",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-6369"
    }
  },
  "description": "SAP Solution Manager\u548cSAP Focused Run\u90fd\u662f\u5fb7\u56fd\u601d\u7231\u666e\uff08SAP\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002SAP Solution Manager\u662f\u4e00\u5957\u96c6\u7cfb\u7edf\u76d1\u63a7\u3001SAP\u652f\u6301\u684c\u9762\u3001\u81ea\u52a9\u670d\u52a1\u3001ASAP\u5b9e\u65bd\u7b49\u591a\u4e2a\u529f\u80fd\u4e3a\u4e00\u4f53\u7684\u7cfb\u7edf\u7ba1\u7406\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u53ef\u4ee5\u5e2e\u52a9\u5ba2\u6237\u5efa\u7acbSAP\u89e3\u51b3\u65b9\u6848\u7684\u751f\u547d\u5468\u671f\u7ba1\u7406\uff0c\u5e76\u63d0\u4f9b\u7cfb\u7edf\u76d1\u63a7\u3001\u8fdc\u7a0b\u652f\u6301\u670d\u52a1\u548cSAP\u4ea7\u54c1\u7ec4\u4ef6\u5347\u7ea7\u7b49\u529f\u80fd\u3002SAP Focused Run\u662f\u4e00\u4e2a\u6570\u636e\u4e2d\u5fc3\u548c\u5927\u5ba2\u6237\u7cfb\u7edf\u8fd0\u7ef4\u7ba1\u7406\u65b9\u6848(\u9ad8\u5bb9\u91cf\u76d1\u63a7,\u8b66\u62a5,\u8bca\u65ad\u548c\u5206\u6790\u7684\u7ec8\u6781\u89e3\u51b3\u65b9\u6848)\u3002\n\nSAP Solution Manager\u548cSAP Focused Run WILY_INTRO_ENTERPRISE 9.7\u300110.1\u300110.5\u548c10.7\u7248\u672c\u5b58\u5728\u8eab\u4efd\u9a8c\u8bc1\u4e0d\u5f53\u6f0f\u6d1e\u3002\u5982\u7ba1\u7406\u5458\u672a\u66f4\u6539Admin\u548cGuest\u7684\u9ed8\u8ba4\u5bc6\u7801\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1ahttps://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=558632196",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-65695",
  "openTime": "2020-11-23",
  "patchDescription": "SAP Solution Manager\u548cSAP Focused Run\u90fd\u662f\u5fb7\u56fd\u601d\u7231\u666e\uff08SAP\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002SAP Solution Manager\u662f\u4e00\u5957\u96c6\u7cfb\u7edf\u76d1\u63a7\u3001SAP\u652f\u6301\u684c\u9762\u3001\u81ea\u52a9\u670d\u52a1\u3001ASAP\u5b9e\u65bd\u7b49\u591a\u4e2a\u529f\u80fd\u4e3a\u4e00\u4f53\u7684\u7cfb\u7edf\u7ba1\u7406\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u53ef\u4ee5\u5e2e\u52a9\u5ba2\u6237\u5efa\u7acbSAP\u89e3\u51b3\u65b9\u6848\u7684\u751f\u547d\u5468\u671f\u7ba1\u7406\uff0c\u5e76\u63d0\u4f9b\u7cfb\u7edf\u76d1\u63a7\u3001\u8fdc\u7a0b\u652f\u6301\u670d\u52a1\u548cSAP\u4ea7\u54c1\u7ec4\u4ef6\u5347\u7ea7\u7b49\u529f\u80fd\u3002SAP Focused Run\u662f\u4e00\u4e2a\u6570\u636e\u4e2d\u5fc3\u548c\u5927\u5ba2\u6237\u7cfb\u7edf\u8fd0\u7ef4\u7ba1\u7406\u65b9\u6848(\u9ad8\u5bb9\u91cf\u76d1\u63a7,\u8b66\u62a5,\u8bca\u65ad\u548c\u5206\u6790\u7684\u7ec8\u6781\u89e3\u51b3\u65b9\u6848)\u3002\r\n\r\nSAP Solution Manager\u548cSAP Focused Run WILY_INTRO_ENTERPRISE 9.7\u300110.1\u300110.5\u548c10.7\u7248\u672c\u5b58\u5728\u8eab\u4efd\u9a8c\u8bc1\u4e0d\u5f53\u6f0f\u6d1e\u3002\u5982\u7ba1\u7406\u5458\u672a\u66f4\u6539Admin\u548cGuest\u7684\u9ed8\u8ba4\u5bc6\u7801\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "SAP Solution Manager\u548cFocused Run\u8eab\u4efd\u9a8c\u8bc1\u4e0d\u5f53\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "SAP SAP Focused Run 9.7",
      "SAP SAP Focused Run 10.1",
      "SAP SAP Focused Run 10.5",
      "SAP SAP Focused Run 10.7",
      "SAP SAP Solution Manager 9.7",
      "SAP SAP Solution Manager 10.1",
      "SAP SAP Solution Manager 10.5",
      "SAP SAP Solution Manager 10.7"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-6369",
  "serverity": "\u4f4e",
  "submitTime": "2020-10-28",
  "title": "SAP Solution Manager\u548cFocused Run\u8eab\u4efd\u9a8c\u8bc1\u4e0d\u5f53\u6f0f\u6d1e"
}

CVE-2020-6369 (GCVE-0-2020-6369)

Vulnerability from cvelistv5

Published

2020-10-20 13:30

Modified

2024-08-04 09:02

Severity ?

7.5 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE

Hard Coded Credentials

Summary

SAP Solution Manager and SAP Focused Run (update provided in WILY_INTRO_ENTERPRISE 9.7, 10.1, 10.5, 10.7), allows an unauthenticated attackers to bypass the authentication if the default passwords for Admin and Guest have not been changed by the administrator.This may impact the confidentiality of the service.

References

▼	URL	Tags
	https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=558632196	x_refsource_MISC
	https://launchpad.support.sap.com/#/notes/2971638	x_refsource_MISC
	http://seclists.org/fulldisclosure/2021/Jun/31	mailing-list, x_refsource_FULLDISC
	http://packetstormsecurity.com/files/163159/SAP-Wily-Introscope-Enterprise-Default-Hard-Coded-Credentials.html	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	SAP SE	CA Introscope Enterprise Manager (Affected products: SAP Solution Manager and SAP Focused Run)	Version: < 9.7 Version: < 10.1 Version: < 10.5 Version: < 10.7

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T09:02:39.880Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=558632196"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://launchpad.support.sap.com/#/notes/2971638"
          },
          {
            "name": "20210614 Onapsis Security Advisory 2021-0009: Hard-coded Credentials in CA Introscope Enterprise Manager",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2021/Jun/31"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/163159/SAP-Wily-Introscope-Enterprise-Default-Hard-Coded-Credentials.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "CA Introscope Enterprise Manager (Affected products: SAP Solution Manager and SAP Focused Run)",
          "vendor": "SAP SE",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 9.7"
            },
            {
              "status": "affected",
              "version": "\u003c 10.1"
            },
            {
              "status": "affected",
              "version": "\u003c 10.5"
            },
            {
              "status": "affected",
              "version": "\u003c 10.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "SAP Solution Manager and SAP Focused Run (update provided in WILY_INTRO_ENTERPRISE 9.7, 10.1, 10.5, 10.7), allows an unauthenticated attackers to bypass the authentication if the default passwords for Admin and Guest have not been changed by the administrator.This may impact the confidentiality of the service."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Hard Coded Credentials",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-06-15T20:06:24",
        "orgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd",
        "shortName": "sap"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=558632196"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://launchpad.support.sap.com/#/notes/2971638"
        },
        {
          "name": "20210614 Onapsis Security Advisory 2021-0009: Hard-coded Credentials in CA Introscope Enterprise Manager",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2021/Jun/31"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/163159/SAP-Wily-Introscope-Enterprise-Default-Hard-Coded-Credentials.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cna@sap.com",
          "ID": "CVE-2020-6369",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "CA Introscope Enterprise Manager (Affected products: SAP Solution Manager and SAP Focused Run)",
                      "version": {
                        "version_data": [
                          {
                            "version_name": "\u003c",
                            "version_value": "9.7"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "10.1"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "10.5"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "10.7"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "SAP SE"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "SAP Solution Manager and SAP Focused Run (update provided in WILY_INTRO_ENTERPRISE 9.7, 10.1, 10.5, 10.7), allows an unauthenticated attackers to bypass the authentication if the default passwords for Admin and Guest have not been changed by the administrator.This may impact the confidentiality of the service."
            }
          ]
        },
        "impact": {
          "cvss": {
            "baseScore": "7.5",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Hard Coded Credentials"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=558632196",
              "refsource": "MISC",
              "url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=558632196"
            },
            {
              "name": "https://launchpad.support.sap.com/#/notes/2971638",
              "refsource": "MISC",
              "url": "https://launchpad.support.sap.com/#/notes/2971638"
            },
            {
              "name": "20210614 Onapsis Security Advisory 2021-0009: Hard-coded Credentials in CA Introscope Enterprise Manager",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2021/Jun/31"
            },
            {
              "name": "http://packetstormsecurity.com/files/163159/SAP-Wily-Introscope-Enterprise-Default-Hard-Coded-Credentials.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/163159/SAP-Wily-Introscope-Enterprise-Default-Hard-Coded-Credentials.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd",
    "assignerShortName": "sap",
    "cveId": "CVE-2020-6369",
    "datePublished": "2020-10-20T13:30:36",
    "dateReserved": "2020-01-08T00:00:00",
    "dateUpdated": "2024-08-04T09:02:39.880Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted