sap
1,577 tracked vulnerabilities.
CVE-2022-27669
HIGH
SAP NetWeaver Application Server for Java 7.50 - Unauthenticated Missing Authorization in XML Data Archiving Service
Apr 12, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-27667
HIGH
SAP BusinessObjects Business Intelligence Platform 430 - Information Disclosure via Client Management Console
Apr 12, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-27657
LOW
SAP Focused Run Simple Diagnostics Agent 1.0 - Path Traversal
Apr 12, 2022
CVSS 2.7
EPSS 0.02
CVE-2022-27655
MEDIUM
SAP 3D Visual Enterprise Viewer 9.0 - Denial of Service via Malformed Universal 3D File
Apr 12, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-27654
MEDIUM
SAP 3D Visual Enterprise Viewer 9.0 - Denial of Service via Malformed Photoshop Document
Apr 12, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-26109
MEDIUM
SAP 3D Visual Enterprise Viewer <9.0 - DoS
Apr 12, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-26108
MEDIUM
SAP 3D Visual Enterprise Viewer <9.0 - DoS
Apr 12, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-26107
MEDIUM
SAP 3D Visual Enterprise Viewer <9.0 - DoS
Apr 12, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-26106
MEDIUM
SAP 3D Visual Enterprise Viewer <9.0 - DoS
Apr 12, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-26105
MEDIUM
SAP NetWeaver Enterprise Portal - XSS
Apr 12, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-22541
MEDIUM
SAP BusinessObjects Business Intelligence Platform <430 - Info Disc...
Apr 12, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-27658
HIGH
SAP Innovation Management 2.0 - Missing Authorization
Mar 28, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-26104
MEDIUM
SAP Financial Consolidation 10.1 - Privilege Escalation
Mar 10, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-26103
MEDIUM
SAP NetWeaver Application Server Java 7.50 - Missing Authorization
Mar 10, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-26102
MEDIUM
SAP NetWeaver Application Server ABAP 700, 701, 702, 731 - Authenticated Missing Authorization Check
Mar 10, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-26101
MEDIUM
SAP Fiori Launchpad 754-756 - Cross-Site Scripting
Mar 10, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-26100
CRITICAL
SAPCAR 7.22 - Denial of Service and Privilege Escalation via Archive Input Validation
Mar 10, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-24399
MEDIUM
SAP Focused Run 200-300 - Cross-Site Scripting via REST Service File Upload
Mar 10, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-24398
MEDIUM
SAP Business Objects Business Intelligence Platform - Info Disclosure
Mar 10, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-24397
MEDIUM
SAP NetWeaver Enterprise Portal - XSS
Mar 10, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-24396
HIGH
Simple Diagnostics Agent <1.57 - Info Disclosure
Mar 10, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-24395
MEDIUM
SAP NetWeaver Enterprise Portal - XSS
Mar 10, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-22547
HIGH
Simple Diagnostics Agent <1.57 - Info Disclosure
Mar 10, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-22546
MEDIUM
SAP Business Objects Web Intelligence <420 - XSS
Feb 09, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-22545
MEDIUM
SAP NetWeaver ABAP and ABAP Platform 700-756 - Unauthorized Sensitive Information Exposure via SM59 Transaction
Feb 09, 2022
CVSS 4.9
EPSS 0.01
Products
3d_visual_enterprise_viewer 131
netweaver 102
netweaver_application_server_abap 86
businessobjects_business_intelligence_platform 73
netweaver_application_server_java 69
businessobjects_business_intelligence 45
hana 38
solution_manager 33
business_one 31
internet_graphics_server 28
3d_visual_enterprise_author 27
businessobjects 23
netweaver_abap 21
netweaver_process_integration 21
netweaver_enterprise_portal 20
business_objects_business_intelligence_platform 18
commerce_cloud 18
hana_extended_application_services 18
sap_basis 18
s\/4hana 17
disclosure_management 16
host_agent 15
adaptive_server_enterprise 14
enable_now 14
s4core 13
abap_platform 12
customer_relationship_management_webclient_ui 12
netweaver_as_abap 12
sap_db 12
sap_kernel 11
Quick Filters