sap
1,577 tracked vulnerabilities.
CVE-2023-1903
MEDIUM
SAP HCM Fiori App My Forms <605 - Info Disclosure
Apr 11, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-27896
MEDIUM
SAP BusinessObjects Business Intelligence Platform 420, 430 - Server-Side Request Forgery
Mar 14, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-27895
MEDIUM
SAP Authenticator for Android -1.3.0 - Info Disclosure
Mar 14, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-27894
MEDIUM
SAP BusinessObjects BI Platform 420, 430 - Information Disclosure via CMS Injection
Mar 14, 2023
CVSS 5.0
EPSS 0.01
CVE-2023-27893
HIGH
SAP Solution Manager - Authenticated Remote Code Execution via Vulnerable Interface
Mar 14, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-27501
HIGH
SAP NetWeaver AS ABAP and ABAP Platform 700-757, 791 - Path Traversal and Arbitrary File Deletion
Mar 14, 2023
CVSS 8.7
EPSS 0.01
CVE-2023-27500
CRITICAL
SAP NetWeaver Application Server ABAP - Authenticated Path Traversal and Arbitrary File Write via SAPRSBRO
Mar 14, 2023
CVSS 9.6
EPSS 0.01
CVE-2023-27498
HIGH
SAP Host Agent 7.22 - Unauthenticated Stack-based Buffer Overflow via Crafted Request
Mar 14, 2023
CVSS 7.2
EPSS 0.01
CVE-2023-27271
MEDIUM
SAP BusinessObjects Web Services <430 - DoS
Mar 14, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-27270
MEDIUM
SAP NetWeaver Application Server - DoS
Mar 14, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-27269
CRITICAL
SAP NetWeaver Application Server for ABAP and ABAP Platform - Path ...
Mar 14, 2023
CVSS 9.6
EPSS 0.01
CVE-2023-27268
MEDIUM
SAP NetWeaver AS Java 7.50 - Privilege Escalation
Mar 14, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-26461
MEDIUM
SAP NetWeaver 7.50 - Info Disclosure
Mar 14, 2023
CVSS 6.8
EPSS 0.01
CVE-2023-26460
MEDIUM
SAP NetWeaver Application Server for Java 7.50 - Auth Bypass
Mar 14, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-26459
HIGH
SAP NetWeaver AS for ABAP and ABAP Platform <791 - Info Disclosure
Mar 14, 2023
CVSS 7.4
EPSS 0.00
CVE-2023-26457
MEDIUM
SAP Content Server 7.53 - Cross-Site Scripting
Mar 14, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-25618
MEDIUM
SAP NetWeaver Application Server ABAP - Authenticated Denial of Service via Error Handling Class
Mar 14, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-25617
CRITICAL
SAP Business Objects BI Platform 4.2/4.3 - Authenticated RCE via Program Object
Mar 14, 2023
CVSS 9.0
EPSS 0.01
CVE-2023-25616
CRITICAL
SAP Business Objects Business Intelligence Platform 420, 430 - Code Injection via Program Object Execution
Mar 14, 2023
CVSS 9.9
EPSS 0.01
CVE-2023-25615
MEDIUM
SAP ABAP Platform 751, 753, 754, 756, 757, 791 - Authenticated SQL Injection
Mar 14, 2023
CVSS 6.8
EPSS 0.01
CVE-2023-24526
MEDIUM
SAP NetWeaver Application Server Java - Privilege Escalation
Mar 14, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-23857
CRITICAL
SAP NetWeaver AS for Java -7.50 - Info Disclosure
Mar 14, 2023
CVSS 9.9
EPSS 0.01
CVE-2023-0021
MEDIUM
SAP NetWeaver 700, 701, 702, 731, 740, 750 - Unauthenticated Reflected Cross-Site Scripting
Mar 14, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-25614
MEDIUM
SAP NetWeaver AS ABAP 700-757 - Unauthenticated Stored Cross-Site Scripting
Feb 14, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-24530
HIGH
SAP BusinessObjects Business Intelligence Platform (CMC) - 420-430 ...
Feb 14, 2023
CVSS 8.4
EPSS 0.01
Products
3d_visual_enterprise_viewer 131
netweaver 102
netweaver_application_server_abap 86
businessobjects_business_intelligence_platform 73
netweaver_application_server_java 69
businessobjects_business_intelligence 45
hana 38
solution_manager 33
business_one 31
internet_graphics_server 28
3d_visual_enterprise_author 27
businessobjects 23
netweaver_abap 21
netweaver_process_integration 21
netweaver_enterprise_portal 20
business_objects_business_intelligence_platform 18
commerce_cloud 18
hana_extended_application_services 18
sap_basis 18
s\/4hana 17
disclosure_management 16
host_agent 15
adaptive_server_enterprise 14
enable_now 14
s4core 13
abap_platform 12
customer_relationship_management_webclient_ui 12
netweaver_as_abap 12
sap_db 12
sap_kernel 11
Quick Filters