CVE-2020-6241
HIGHSAP Adaptive Server Enterprise 16.0 - Privilege Escalation
Title source: llmDescription
SAP Adaptive Server Enterprise, version 16.0, allows an authenticated user to execute crafted database queries to elevate privileges of users in the system, leading to SQL Injection.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=545396222
Permissions Required x_refsource_misc
https://launchpad.support.sap.com/#/notes/2916927
Scores
CVSS v3
8.8
EPSS
0.0051
EPSS Percentile
66.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-89
Status
published
Products (1)
sap/adaptive_server_enterprise
16.0
Published
May 12, 2020
Tracked Since
Feb 18, 2026