Lucene search

SAP Adaptive Server Enterprise (Cockpit) Security Vulnerabilities

cve

CVE-2020-6317

In certain situations, an attacker with regular user credentials and local access to an ASE cockpit installation can access sensitive information which appears in the installation log files. This information although sensitive is of limited utility and cannot be used to further access, modify or...

3.5CVSS

3.9AI Score

0.0004EPSS

2020-11-30 07:15 PM

cve

CVE-2020-6295

Under certain conditions the SAP Adaptive Server Enterprise, version 16.0, allows an attacker to access encrypted sensitive and confidential information through publicly readable installation log files leading to a compromise of the installed Cockpit. This compromise could enable the attacker to...

7.8CVSS

7.3AI Score

0.0004EPSS

2020-08-12 02:15 PM

cve

CVE-2020-6252

Under certain conditions SAP Adaptive Server Enterprise (Cockpit), version 16.0, allows an attacker with access to local network, to get sensitive and confidential information, leading to Information Disclosure. It can be used to get user account credentials, tamper with system data and impact...

8CVSS

7.8AI Score

0.0004EPSS

2020-05-12 06:15 PM