POLICY-OTHER --
POLICY-OTHER SAP NetWeaver AS LM Configuration Wizard access detected
Certain versions of SAP NetWeaver AS do not perform an authentication check for access to the LM Configuration Wizard. This rule is designed to flag activity that may abuse that vulnerability.
This rule detects if an attempt to access the SAP NetWeaver LM Configuation Wizard.
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
Authentication Bypass
An Authentication Bypass occurs when there is a way to avoid providing user credentials to a system before performing restricted operations on said system.
CVE-2020-6287 |
Loading description
|
Tactic: Discovery
Technique: Software Discovery
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org