SAP Solution Manager (Diagnostics agent) - version 7.20, allows an attacker to tamper with headers in a client request. This misleads SAP Diagnostics Agent to serve poisoned content to the server. On successful exploitation, the attacker can cause a limited impact on confidentiality and availability of the application.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:LSap Solution Manager
APPSap7.20
Related vulnerabilities
SAP Solution Manager (User Experience Monitoring), version- 7.2, due to Missing Authentication Check does not ...
Solution Manager (Diagnostics Root Cause Analysis Tools) - version 720, allows an administrator to execute cod...
SAP Solution Manager 7.2 (User Experience Monitoring), version - 7.2, allows an authenticated user to upload a...
SAP Solution Manager (JAVA stack), version - 7.20, allows an unauthenticated attacker to compromise the system...
SAP Solution Manager (JAVA stack), version - 7.20, allows an unauthenticated attacker to compromise the system...