Description
This note solves two similar issues. Both vulnerabilities are caused by an incomplete xml validation.
- SAP Solution Manager (Application: Trace Analysis) allows an attacker to inject superflous data that can be displayed by the application.The application shows additional data that do not actually exist.
- CVE-2020-6260
- CVSS:6.5;CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
- CVE-2020-6260
- It is possible to perform a log injection into the trace file. The readability of the trace file is impaired.
- CVE-2020-6261
- CVSS:5.3;CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Available fix and Supported packages
- LM-SERVICE | 7.20 | 7.20
- SOLMANDIAG 720 | SP004 | 000015
- SOLMANDIAG 720 | SP005 | 000016
- SOLMANDIAG 720 | SP006 | 000017
- SOLMANDIAG 720 | SP007 | 000023
- SOLMANDIAG 720 | SP008 | 000019
- SOLMANDIAG 720 | SP009 | 000011
- SOLMANDIAG 720 | SP010 | 000005
Affected component
- SV-SMG-DIA-APP-TA
Trace Analysis
CVSS
Score: 6.5
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/2915126