Posted by Onapsis Research via Fulldisclosure on Jun 14

# Onapsis Security Advisory 2021-0013: [CVE-2020-26829] – Missing
Authentication Check In SAP NetWeaver AS JAVA P2P Cluster
communication

## Impact on Business

A malicious unauthenticated user could abuse the lack of authentication
check on SAP Java P2P cluster communication, in order to connect to the
respective TCP ports and perform different privileged actions, such as:

– Installing new trusted SSO providers
– Changing database connection…
Read More – Full Disclosure


By |2021-06-14T17:19:19-04:00June 14th, 2021|