cnvd - cnvd-2021-18229

cnvd-2021-18229

Vulnerability from cnvd

Title: SAP AS ABAP和SAP S4 HANA身份验证不当漏洞

Description:

SAP Netweaver是德国思爱普（SAP）公司的一套面向服务的集成化应用平台。该平台主要为SAP应用程序提供开发和运行环境。ABAP是一款运行于NetWeaver中且基于ABAP高级编程语言的应用服务器。SAP HANA是德国思爱普（SAP）公司的一套高性能的实时数据分析平台。该平台提供数据查询功能，支持用户对查询实时业务数据进行查询和分析。

SAP AS ABAP(SAP Landscape Transformation)和SAP S4 HANA(SAP Landscape Transformation)存在身份验证不当漏洞。攻击者可利用该漏洞执行应限制访问权限的RFC功能模块及存在漏洞的SAP系统的某些敏感内部信息，或者使存在漏洞的SAP系统完全不可用。

Severity: 高

Patch Name: SAP AS ABAP和SAP S4 HANA身份验证不当漏洞的补丁

Patch Description:

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接：https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079

Reference: https://vigilance.fr/vulnerability/SAP-multiple-vulnerabilities-of-December-2020-34054

Impacted products

Name
['SAP SAP AS ABAP 2011_1_620', 'SAP SAP AS ABAP 2011_1_640', 'SAP SAP AS ABAP 2011_1_700', 'SAP SAP AS ABAP 2011_1_710', 'SAP SAP AS ABAP 2011_1_730', 'SAP SAP AS ABAP 2011_1_731', 'SAP SAP AS ABAP 2011_1_752', 'SAP SAP AS ABAP 2020', 'SAP SAP S4 HANA 101', 'SAP SAP S4 HANA 102', 'SAP SAP S4 HANA 103', 'SAP SAP S4 HANA 104', 'SAP SAP S4 HANA 105']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-26832",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-26832"
    }
  },
  "description": "SAP Netweaver\u662f\u5fb7\u56fd\u601d\u7231\u666e\uff08SAP\uff09\u516c\u53f8\u7684\u4e00\u5957\u9762\u5411\u670d\u52a1\u7684\u96c6\u6210\u5316\u5e94\u7528\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u4e3b\u8981\u4e3aSAP\u5e94\u7528\u7a0b\u5e8f\u63d0\u4f9b\u5f00\u53d1\u548c\u8fd0\u884c\u73af\u5883\u3002ABAP\u662f\u4e00\u6b3e\u8fd0\u884c\u4e8eNetWeaver\u4e2d\u4e14\u57fa\u4e8eABAP\u9ad8\u7ea7\u7f16\u7a0b\u8bed\u8a00\u7684\u5e94\u7528\u670d\u52a1\u5668\u3002SAP HANA\u662f\u5fb7\u56fd\u601d\u7231\u666e\uff08SAP\uff09\u516c\u53f8\u7684\u4e00\u5957\u9ad8\u6027\u80fd\u7684\u5b9e\u65f6\u6570\u636e\u5206\u6790\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u63d0\u4f9b\u6570\u636e\u67e5\u8be2\u529f\u80fd\uff0c\u652f\u6301\u7528\u6237\u5bf9\u67e5\u8be2\u5b9e\u65f6\u4e1a\u52a1\u6570\u636e\u8fdb\u884c\u67e5\u8be2\u548c\u5206\u6790\u3002\n\nSAP AS ABAP(SAP Landscape Transformation)\u548cSAP S4 HANA(SAP Landscape Transformation)\u5b58\u5728\u8eab\u4efd\u9a8c\u8bc1\u4e0d\u5f53\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u5e94\u9650\u5236\u8bbf\u95ee\u6743\u9650\u7684RFC\u529f\u80fd\u6a21\u5757\u53ca\u5b58\u5728\u6f0f\u6d1e\u7684SAP\u7cfb\u7edf\u7684\u67d0\u4e9b\u654f\u611f\u5185\u90e8\u4fe1\u606f\uff0c\u6216\u8005\u4f7f\u5b58\u5728\u6f0f\u6d1e\u7684SAP\u7cfb\u7edf\u5b8c\u5168\u4e0d\u53ef\u7528\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1ahttps://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-18229",
  "openTime": "2021-03-17",
  "patchDescription": "SAP Netweaver\u662f\u5fb7\u56fd\u601d\u7231\u666e\uff08SAP\uff09\u516c\u53f8\u7684\u4e00\u5957\u9762\u5411\u670d\u52a1\u7684\u96c6\u6210\u5316\u5e94\u7528\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u4e3b\u8981\u4e3aSAP\u5e94\u7528\u7a0b\u5e8f\u63d0\u4f9b\u5f00\u53d1\u548c\u8fd0\u884c\u73af\u5883\u3002ABAP\u662f\u4e00\u6b3e\u8fd0\u884c\u4e8eNetWeaver\u4e2d\u4e14\u57fa\u4e8eABAP\u9ad8\u7ea7\u7f16\u7a0b\u8bed\u8a00\u7684\u5e94\u7528\u670d\u52a1\u5668\u3002SAP HANA\u662f\u5fb7\u56fd\u601d\u7231\u666e\uff08SAP\uff09\u516c\u53f8\u7684\u4e00\u5957\u9ad8\u6027\u80fd\u7684\u5b9e\u65f6\u6570\u636e\u5206\u6790\u5e73\u53f0\u3002\u8be5\u5e73\u53f0\u63d0\u4f9b\u6570\u636e\u67e5\u8be2\u529f\u80fd\uff0c\u652f\u6301\u7528\u6237\u5bf9\u67e5\u8be2\u5b9e\u65f6\u4e1a\u52a1\u6570\u636e\u8fdb\u884c\u67e5\u8be2\u548c\u5206\u6790\u3002\r\n\r\nSAP AS ABAP(SAP Landscape Transformation)\u548cSAP S4 HANA(SAP Landscape Transformation)\u5b58\u5728\u8eab\u4efd\u9a8c\u8bc1\u4e0d\u5f53\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u5e94\u9650\u5236\u8bbf\u95ee\u6743\u9650\u7684RFC\u529f\u80fd\u6a21\u5757\u53ca\u5b58\u5728\u6f0f\u6d1e\u7684SAP\u7cfb\u7edf\u7684\u67d0\u4e9b\u654f\u611f\u5185\u90e8\u4fe1\u606f\uff0c\u6216\u8005\u4f7f\u5b58\u5728\u6f0f\u6d1e\u7684SAP\u7cfb\u7edf\u5b8c\u5168\u4e0d\u53ef\u7528\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "SAP AS ABAP\u548cSAP S4 HANA\u8eab\u4efd\u9a8c\u8bc1\u4e0d\u5f53\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "SAP SAP AS ABAP 2011_1_620",
      "SAP SAP AS ABAP 2011_1_640",
      "SAP SAP AS ABAP 2011_1_700",
      "SAP SAP AS ABAP 2011_1_710",
      "SAP SAP AS ABAP 2011_1_730",
      "SAP SAP AS ABAP 2011_1_731",
      "SAP SAP AS ABAP 2011_1_752",
      "SAP SAP AS ABAP 2020",
      "SAP SAP S4 HANA 101",
      "SAP SAP S4 HANA 102",
      "SAP SAP S4 HANA 103",
      "SAP SAP S4 HANA 104",
      "SAP SAP S4 HANA 105"
    ]
  },
  "referenceLink": "https://vigilance.fr/vulnerability/SAP-multiple-vulnerabilities-of-December-2020-34054",
  "serverity": "\u9ad8",
  "submitTime": "2020-12-15",
  "title": "SAP AS ABAP\u548cSAP S4 HANA\u8eab\u4efd\u9a8c\u8bc1\u4e0d\u5f53\u6f0f\u6d1e"
}

CVE-2020-26832 (GCVE-0-2020-26832)

Vulnerability from cvelistv5

Published

2020-12-09 16:31

Modified

2024-08-04 16:03

Severity ?

7.6 (High) - CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:H

CWE

Missing Authorization

Summary

SAP AS ABAP (SAP Landscape Transformation), versions - 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_710, 2011_1_730, 2011_1_731, 2011_1_752, 2020 and SAP S4 HANA (SAP Landscape Transformation), versions - 101, 102, 103, 104, 105, allows a high privileged user to execute a RFC function module to which access should be restricted, however due to missing authorization an attacker can get access to some sensitive internal information of vulnerable SAP system or to make vulnerable SAP systems completely unavailable.

References

▼	URL	Tags
	https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079	x_refsource_MISC
	https://launchpad.support.sap.com/#/notes/2993132	x_refsource_MISC
	http://seclists.org/fulldisclosure/2022/May/42	mailing-list, x_refsource_FULLDISC
	http://packetstormsecurity.com/files/167229/SAP-Application-Server-ABAP-ABAP-Platform-Code-Injection-SQL-Injection-Missing-Authorization.html	x_refsource_MISC

Impacted products

Vendor

Product

Version

▼

SAP SE

SAP NetWeaver AS ABAP (SAP Landscape Transformation)

Version: < 2011_1_620
Version: < 2011_1_640
Version: < 2011_1_700
Version: < 2011_1_710
Version: < 2011_1_730
Version: < 2011_1_731
Version: < 2011_1_752
Version: < 2020

SAP SE

SAP S4 HANA (SAP Landscape Transformation)

Version: < 101
Version: < 102
Version: < 103
Version: < 104
Version: < 105

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T16:03:22.474Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://launchpad.support.sap.com/#/notes/2993132"
          },
          {
            "name": "20220518 SEC Consult SA-20220518-0 :: Multiple Critical Vulnerabilities in SAP Application Server, ABAP and ABAP Platform (Different Software Components)",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2022/May/42"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/167229/SAP-Application-Server-ABAP-ABAP-Platform-Code-Injection-SQL-Injection-Missing-Authorization.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "SAP NetWeaver AS ABAP (SAP Landscape Transformation)",
          "vendor": "SAP SE",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 2011_1_620"
            },
            {
              "status": "affected",
              "version": "\u003c 2011_1_640"
            },
            {
              "status": "affected",
              "version": "\u003c 2011_1_700"
            },
            {
              "status": "affected",
              "version": "\u003c 2011_1_710"
            },
            {
              "status": "affected",
              "version": "\u003c 2011_1_730"
            },
            {
              "status": "affected",
              "version": "\u003c 2011_1_731"
            },
            {
              "status": "affected",
              "version": "\u003c 2011_1_752"
            },
            {
              "status": "affected",
              "version": "\u003c 2020"
            }
          ]
        },
        {
          "product": "SAP S4 HANA (SAP Landscape Transformation)",
          "vendor": "SAP SE",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 101"
            },
            {
              "status": "affected",
              "version": "\u003c 102"
            },
            {
              "status": "affected",
              "version": "\u003c 103"
            },
            {
              "status": "affected",
              "version": "\u003c 104"
            },
            {
              "status": "affected",
              "version": "\u003c 105"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "SAP AS ABAP (SAP Landscape Transformation), versions - 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_710, 2011_1_730, 2011_1_731, 2011_1_752, 2020 and SAP S4 HANA (SAP Landscape Transformation), versions - 101, 102, 103, 104, 105, allows a high privileged user to execute a RFC function module to which access should be restricted, however due to missing authorization an attacker can get access to some sensitive internal information of vulnerable SAP system or to make vulnerable SAP systems completely unavailable."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:H",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Missing Authorization",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-05-19T17:06:20",
        "orgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd",
        "shortName": "sap"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://launchpad.support.sap.com/#/notes/2993132"
        },
        {
          "name": "20220518 SEC Consult SA-20220518-0 :: Multiple Critical Vulnerabilities in SAP Application Server, ABAP and ABAP Platform (Different Software Components)",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2022/May/42"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/167229/SAP-Application-Server-ABAP-ABAP-Platform-Code-Injection-SQL-Injection-Missing-Authorization.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cna@sap.com",
          "ID": "CVE-2020-26832",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "SAP NetWeaver AS ABAP (SAP Landscape Transformation)",
                      "version": {
                        "version_data": [
                          {
                            "version_name": "\u003c",
                            "version_value": "2011_1_620"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "2011_1_640"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "2011_1_700"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "2011_1_710"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "2011_1_730"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "2011_1_731"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "2011_1_752"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "2020"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "SAP S4 HANA (SAP Landscape Transformation)",
                      "version": {
                        "version_data": [
                          {
                            "version_name": "\u003c",
                            "version_value": "101"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "102"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "103"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "104"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "105"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "SAP SE"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "SAP AS ABAP (SAP Landscape Transformation), versions - 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_710, 2011_1_730, 2011_1_731, 2011_1_752, 2020 and SAP S4 HANA (SAP Landscape Transformation), versions - 101, 102, 103, 104, 105, allows a high privileged user to execute a RFC function module to which access should be restricted, however due to missing authorization an attacker can get access to some sensitive internal information of vulnerable SAP system or to make vulnerable SAP systems completely unavailable."
            }
          ]
        },
        "impact": {
          "cvss": {
            "baseScore": "7.6",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:H",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Missing Authorization"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079",
              "refsource": "MISC",
              "url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079"
            },
            {
              "name": "https://launchpad.support.sap.com/#/notes/2993132",
              "refsource": "MISC",
              "url": "https://launchpad.support.sap.com/#/notes/2993132"
            },
            {
              "name": "20220518 SEC Consult SA-20220518-0 :: Multiple Critical Vulnerabilities in SAP Application Server, ABAP and ABAP Platform (Different Software Components)",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2022/May/42"
            },
            {
              "name": "http://packetstormsecurity.com/files/167229/SAP-Application-Server-ABAP-ABAP-Platform-Code-Injection-SQL-Injection-Missing-Authorization.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/167229/SAP-Application-Server-ABAP-ABAP-Platform-Code-Injection-SQL-Injection-Missing-Authorization.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd",
    "assignerShortName": "sap",
    "cveId": "CVE-2020-26832",
    "datePublished": "2020-12-09T16:31:03",
    "dateReserved": "2020-10-07T00:00:00",
    "dateUpdated": "2024-08-04T16:03:22.474Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted