sap
1,568 tracked vulnerabilities.
CVE-2022-31597
MEDIUM
SAP S/4HANA S4CORE 101-106 and SAPSCORE 127 - Authenticated Missing Authorization in Business Partner Extension
Jul 12, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-31593
HIGH
SAP Business One client <10.0 - Code Injection
Jul 12, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-31592
MEDIUM
SAP Enterprise Extension Defense Forces & Public Security - Privile...
Jul 12, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-31591
HIGH
SAP BusinessObjects BW Publisher Service <430 - Privilege Escalation
Jul 12, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-29619
MEDIUM
SAP BusinessObjects Business Intelligence Platform 4.20,4.30 - Incorrect Authorization
Jul 12, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-28771
HIGH
SAP Business One License service API <10.0 - Unauthenticated RCE
Jul 12, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-32243
MEDIUM
SAP 3D Visual Enterprise Viewer < 9.0 - Denial of Service via Malicious SVG File
Jun 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-32242
MEDIUM
SAP 3D Visual Enterprise Viewer < 9.0 - Denial of Service via Manipulated Radiance Picture Files
Jun 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-32241
MEDIUM
SAP 3D Visual Enterprise Viewer < 9.0 - Denial of Service via Malicious PDF File
Jun 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-32240
MEDIUM
SAP 3D Visual Enterprise Viewer < 9.0 - Denial of Service via Malicious JT File
Jun 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-32239
MEDIUM
SAP 3D Visual Enterprise Viewer < 9.0 - Denial of Service via Malformed JPEG 2000 File
Jun 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-32238
MEDIUM
SAP 3D Visual Enterprise Viewer < 9.0 - Denial of Service via Malformed EPS File
Jun 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-32237
MEDIUM
SAP 3D Visual Enterprise Viewer < 9.0 - Denial of Service via Malformed CGM File
Jun 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-32236
MEDIUM
SAP 3D Visual Enterprise Viewer < 9.0 - Denial of Service via Malformed BMP File
Jun 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-32235
MEDIUM
SAP 3D Visual Enterprise Viewer < 9.0 - Denial of Service via Malicious AutoCAD File
Jun 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-31595
HIGH
SAP Financial Consolidation 1010 - Privilege Escalation
Jun 14, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-31594
MEDIUM
SUID-root Program - Privilege Escalation
Jun 14, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-31590
HIGH
SAP PowerDesigner Proxy 16.7 - Privilege Escalation
Jun 14, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-31589
MEDIUM
SAP ERP Financial Accounting - Incorrect Authorization in Israeli File SHAAM Program
Jun 14, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-29618
MEDIUM
SAP NetWeaver Development Infrastructure 7.30, 7.31, 7.40, 7.50 - Unauthenticated Cross-Site Scripting via URL Injection
Jun 14, 2022
CVSS 6.1
EPSS 0.03
CVE-2022-29615
LOW
SAP NetWeaver Developer Studio 7.50 - Deserialization of Untrusted Data
Jun 14, 2022
CVSS 3.4
EPSS 0.00
CVE-2022-29614
MEDIUM
SAP Host Agent - Local Privilege Escalation via sapuxuserchk Helper Program
Jun 14, 2022
CVSS 5.0
EPSS 0.00
CVE-2022-29612
MEDIUM
SAP Host Agent and NetWeaver ABAP - Authenticated Server-Side Request Forgery via sapcontrol startservice
Jun 14, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-27668
CRITICAL
SAP NetWeaver and ABAP Platform - Unauthenticated Remote Command Execution via SAProuter Administration Commands
Jun 14, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-28217
MEDIUM
SAP NetWeaver - Server-Side Request Forgery via XML Document Validation Bypass
Jun 13, 2022
CVSS 6.5
EPSS 0.00
Products
3d_visual_enterprise_viewer 131
netweaver 102
netweaver_application_server_abap 78
businessobjects_business_intelligence_platform 73
netweaver_application_server_java 68
businessobjects_business_intelligence 45
hana 38
solution_manager 33
business_one 31
internet_graphics_server 28
3d_visual_enterprise_author 27
businessobjects 23
netweaver_abap 21
netweaver_process_integration 21
netweaver_enterprise_portal 20
business_objects_business_intelligence_platform 18
commerce_cloud 18
hana_extended_application_services 18
sap_basis 18
s\/4hana 17
disclosure_management 16
host_agent 15
adaptive_server_enterprise 14
enable_now 14
s4core 13
abap_platform 12
customer_relationship_management_webclient_ui 12
netweaver_as_abap 12
sap_db 12
sap_kernel 11
Quick Filters