Intrusion PreventionSAP.Solution.Manager.SMDAgent.Remote.Code.Execution
Description
This indicates an attack attempt to exploit a Remote Code Execution Vulnerability in SAP Solution Manager.
The vulnerability is due to the lack of authentication checks in the service endpoint. Successful exploitation could lead to remote code execution in the context of the vulnerable application.
Affected Products
SAP Solution Manager version 7.2
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=540935305
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2021-02-24 | 17.022 | Default_action:pass:drop |
| 2021-01-27 | 17.006 | |
| 2021-01-21 | 17.005 | |
| 2021-01-19 | 17.002 |
| ID | 49755 |
| Created | Jan 18, 2021 |
| Updated | Feb 23, 2021 |
| Risk |
|
| CVE ID | CVE-2020-6207 |
| Known Exploited | Yes |
| Exploit Prediction Score | 97.44% |
| Default Action | drop |
| Active | |
| Affected OS | Windows, Linux |
| Affected App | SAP |