CVE-2013-6820
SAP NetWeaver Development Infrastructure - Unrestricted File Upload and Remote Code Execution
Title source: llmDescription
Unrestricted file upload vulnerability in the SAP NetWeaver Development Infrastructure (NWDI) allows remote attackers to execute arbitrary code by uploading a file with an executable extension via unspecified vectors.
References (3)
Core 3
Core References
Various Sources x_refsource_confirm
http://scn.sap.com/docs/DOC-8218
Various Sources x_refsource_confirm
https://service.sap.com/sap/support/notes/1757675
Third Party Advisory x_refsource_misc
https://erpscan.io/advisories/dsecrg-13-004-sap-netweaver-di-arbitrary-file-upload/
Scores
EPSS
0.0378
EPSS Percentile
88.2%
Details
Status
published
Products (1)
sap/netweaver_development_infrastructure
Published
Nov 20, 2013
Tracked Since
Feb 18, 2026