SAP_SE

283 tracked vulnerabilities.

CVE-2025-0056 MEDIUM
SAP GUI for Java >= BC-FES-JAV 7.80 < BC-FES-JAV 7.80 - Exposure of Sensitive System Information
Jan 14, 2025
CVSS 6.0
EPSS 0.00
CVE-2025-0055 MEDIUM
SAP GUI for Windows - Info Disclosure
Jan 14, 2025
CVSS 6.0
EPSS 0.00
CVE-2024-54198 HIGH
SAP NetWeaver Application Server ABAP - Privilege Escalation
Dec 10, 2024
CVSS 8.5
EPSS 0.00
CVE-2024-54197 HIGH
SAP NetWeaver Administrator(System Overview) >=LM-CORE 7.50 <LM-CORE 7.50 - Authenticated Server-Side Request Forgery
Dec 10, 2024
CVSS 7.2
EPSS 0.00
CVE-2024-47585 MEDIUM
SAP NetWeaver Application Server - Privilege Escalation
Dec 10, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-47582 MEDIUM
SAP NetWeaver AS JAVA >=LM-CORE 7.50 <LM-CORE 7.50 - Unauthenticated XML External Entity Injection
Dec 10, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-47581 MEDIUM
SAP HCM Approve Timesheets <4 - Privilege Escalation
Dec 10, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-47580 MEDIUM
SAP NetWeaver AS for JAVA (Adobe Document Services) - Information Disclosure
Dec 10, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-47579 MEDIUM
SAP NetWeaver AS for JAVA (Adobe Document Services) - Authenticated Arbitrary File Read via PDF Font Upload/Download
Dec 10, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-47578 CRITICAL
SAP NetWeaver AS for JAVA (Adobe Document Services) - Authenticated Server-Side Request Forgery
Dec 10, 2024
CVSS 9.1
EPSS 0.00
CVE-2024-47577 LOW
SAP Commerce Cloud - Info Disclosure
Dec 10, 2024
CVSS 2.7
EPSS 0.00
CVE-2024-47576 LOW
SAP Product Lifecycle Costing Client <4.7.1 - Command Injection
Dec 10, 2024
CVSS 3.3
EPSS 0.00
CVE-2024-47593 MEDIUM
SAP NetWeaver Application Server ABAP - Info Disclosure
Nov 12, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-47592 MEDIUM
SAP NetWeaver AS Java - Info Disclosure
Nov 12, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-47590 HIGH
SAP Web Dispatcher - Unauthenticated Cross-Site Scripting and Server-Side Request Forgery via Malicious Link
Nov 12, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-47588 MEDIUM
SAP NetWeaver Java - Info Disclosure
Nov 12, 2024
CVSS 4.7
EPSS 0.00
CVE-2024-47587 LOW
Cash Operations - Privilege Escalation
Nov 12, 2024
CVSS 3.5
EPSS 0.00
CVE-2024-47586 MEDIUM
SAP NetWeaver Application Server for ABAP and ABAP Platform - DoS
Nov 12, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-42372 MEDIUM
SAP NetWeaver AS Java - Info Disclosure
Nov 12, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-45285 MEDIUM
SAP NetWeaver ABAP RFC Module - User Denial of Service
Sep 10, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-45284 LOW
SAP Student Life Cycle Management - Authenticated Privilege Escalation via Unrestricted SLCM Transaction Functions
Sep 10, 2024
CVSS 2.4
EPSS 0.00
CVE-2024-45283 MEDIUM
SAP NetWeaver AS for Java - Info Disclosure
Sep 10, 2024
CVSS 6.0
EPSS 0.00
CVE-2024-45280 MEDIUM
SAP NetWeaver AS Java (Logon Application) >=7.50 - Cross-Site Scripting
Sep 10, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-45279 MEDIUM
SAP NetWeaver Application Server for ABAP - XSS
Sep 10, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-44121 MEDIUM
SAP S/4 HANA (Statutory Reports) - Exposure of Sensitive Internal User Data
Sep 10, 2024
CVSS 4.3
EPSS 0.00
Products
SAP NetWeaver Application Server for ABAP and ABAP Platform 10 SAP NetWeaver Application Server ABAP 9 SAP Fiori App (Intercompany Balance Reconciliation) 6 SAP GUI for Windows 6 SAP NetWeaver Application Server Java 6 SAP NetWeaver Application Server for ABAP 6 SAP BusinessObjects Business Intelligence Platform 5 SAP Financial Consolidation 4 SAP NetWeaver Application Server ABAP and ABAP Platform 4 SAP NetWeaver Enterprise Portal 4 SAPCAR 4 SAP Business One (SLD) 3 SAP Commerce Cloud 3 SAP HCM (My Timesheet Fiori 2.0 application) 3 SAP MDM Server 3 SAP NetWeaver AS for JAVA (Adobe Document Services) 3 SAP NetWeaver Application Server ABAP (applications based on SAP GUI for HTML) 3 SAP NetWeaver and ABAP Platform (SDCCN) 3 SAP Solution Manager 3 SAP Business Connector 2 SAP Business Warehouse and SAP Plug-In Basis 2 SAP Commerce 2 SAP Enable Now 2 SAP Landscape Transformation 2 SAP Landscape Transformation (Analysis Platform) 2 SAP NetWeaver 2 SAP NetWeaver ABAP Platform 2 SAP NetWeaver Application Server ABAP (BIC Document) 2 SAP S/4 HANA (Cash Management) 2 SAP S/4 HANA (Manage Bank Statement Reprocessing Rules) 2
Quick Filters
Critical CVEs With Exploits In CISA KEV