Posted by Onapsis Research via Fulldisclosure on Apr 05

# Onapsis Security Advisory 2021-0002: [CVE-2020-6234] – SAP Multiple root
LPE through SAP Host Control

## Impact on Business

A malicious authenticated attacker, with privileges of SAP SMD Agent
access, can exploit
certain SAP Host Control functions due to missing input checking, in order
to escalate its
privileges and execute commands as root/system user.

## Advisory Information

– Security Advisory ID: ONAPSIS-2021-0002
– Vulnerability…
Read More – Full Disclosure

By |2021-04-05T16:18:57-04:00April 5th, 2021|