sap

1,577 tracked vulnerabilities.

CVE-2023-1903 MEDIUM
SAP HCM Fiori App My Forms <605 - Info Disclosure
Apr 11, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-27896 MEDIUM
SAP BusinessObjects Business Intelligence Platform 420, 430 - Server-Side Request Forgery
Mar 14, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-27895 MEDIUM
SAP Authenticator for Android -1.3.0 - Info Disclosure
Mar 14, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-27894 MEDIUM
SAP BusinessObjects BI Platform 420, 430 - Information Disclosure via CMS Injection
Mar 14, 2023
CVSS 5.0
EPSS 0.01
CVE-2023-27893 HIGH
SAP Solution Manager - Authenticated Remote Code Execution via Vulnerable Interface
Mar 14, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-27501 HIGH
SAP NetWeaver AS ABAP and ABAP Platform 700-757, 791 - Path Traversal and Arbitrary File Deletion
Mar 14, 2023
CVSS 8.7
EPSS 0.01
CVE-2023-27500 CRITICAL
SAP NetWeaver Application Server ABAP - Authenticated Path Traversal and Arbitrary File Write via SAPRSBRO
Mar 14, 2023
CVSS 9.6
EPSS 0.01
CVE-2023-27498 HIGH
SAP Host Agent 7.22 - Unauthenticated Stack-based Buffer Overflow via Crafted Request
Mar 14, 2023
CVSS 7.2
EPSS 0.01
CVE-2023-27271 MEDIUM
SAP BusinessObjects Web Services <430 - DoS
Mar 14, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-27270 MEDIUM
SAP NetWeaver Application Server - DoS
Mar 14, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-27269 CRITICAL
SAP NetWeaver Application Server for ABAP and ABAP Platform - Path ...
Mar 14, 2023
CVSS 9.6
EPSS 0.01
CVE-2023-27268 MEDIUM
SAP NetWeaver AS Java 7.50 - Privilege Escalation
Mar 14, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-26461 MEDIUM
SAP NetWeaver 7.50 - Info Disclosure
Mar 14, 2023
CVSS 6.8
EPSS 0.01
CVE-2023-26460 MEDIUM
SAP NetWeaver Application Server for Java 7.50 - Auth Bypass
Mar 14, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-26459 HIGH
SAP NetWeaver AS for ABAP and ABAP Platform <791 - Info Disclosure
Mar 14, 2023
CVSS 7.4
EPSS 0.00
CVE-2023-26457 MEDIUM
SAP Content Server 7.53 - Cross-Site Scripting
Mar 14, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-25618 MEDIUM
SAP NetWeaver Application Server ABAP - Authenticated Denial of Service via Error Handling Class
Mar 14, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-25617 CRITICAL
SAP Business Objects BI Platform 4.2/4.3 - Authenticated RCE via Program Object
Mar 14, 2023
CVSS 9.0
EPSS 0.01
CVE-2023-25616 CRITICAL
SAP Business Objects Business Intelligence Platform 420, 430 - Code Injection via Program Object Execution
Mar 14, 2023
CVSS 9.9
EPSS 0.01
CVE-2023-25615 MEDIUM
SAP ABAP Platform 751, 753, 754, 756, 757, 791 - Authenticated SQL Injection
Mar 14, 2023
CVSS 6.8
EPSS 0.01
CVE-2023-24526 MEDIUM
SAP NetWeaver Application Server Java - Privilege Escalation
Mar 14, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-23857 CRITICAL
SAP NetWeaver AS for Java -7.50 - Info Disclosure
Mar 14, 2023
CVSS 9.9
EPSS 0.01
CVE-2023-0021 MEDIUM
SAP NetWeaver 700, 701, 702, 731, 740, 750 - Unauthenticated Reflected Cross-Site Scripting
Mar 14, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-25614 MEDIUM
SAP NetWeaver AS ABAP 700-757 - Unauthenticated Stored Cross-Site Scripting
Feb 14, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-24530 HIGH
SAP BusinessObjects Business Intelligence Platform (CMC) - 420-430 ...
Feb 14, 2023
CVSS 8.4
EPSS 0.01