sap

1,577 tracked vulnerabilities.

CVE-2022-22544 CRITICAL
SAP Solution Manager 720 - Authenticated Remote Code Execution and File Access via Diagnostics Root Cause Analysis Tools
Feb 09, 2022
CVSS 9.1
EPSS 0.01
CVE-2022-22543 HIGH
SAP NetWeaver Application Server for ABAP (Kernel) - DoS
Feb 09, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-22542 MEDIUM
SAP S/4HANA - Exposure of Sensitive Employee Business Partner Data via Supplier Factsheet and Enterprise Search
Feb 09, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-22540 HIGH
SAP NetWeaver AS ABAP (Workplace Server) - SQL Injection
Feb 09, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-22539 MEDIUM
SAP 3D Visual Enterprise Viewer <9.0 - DoS
Feb 09, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-22538 MEDIUM
SAP 3D Visual Enterprise Viewer <9.0 - DoS
Feb 09, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-22537 MEDIUM
SAP 3D Visual Enterprise Viewer <9.0 - Info Disclosure
Feb 09, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-22536 CRITICAL KEVNUCLEI
SAP Content Server 7.53 - Unauthenticated HTTP Request Smuggling
Feb 09, 2022
CVSS 10.0
EPSS 0.98
CVE-2022-22535 MEDIUM
SAP ERP HCM Portugal - Info Disclosure
Feb 09, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-22534 MEDIUM
SAP NetWeaver - Unauthenticated Cross-Site Scripting
Feb 09, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-22533 HIGH
SAP NetWeaver Application Server Java - DoS
Feb 09, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-22532 CRITICAL
SAP NetWeaver Application Server Java - Memory Corruption
Feb 09, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-22528 HIGH
SAP ASE <16.0 - Privilege Escalation
Feb 09, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-22531 HIGH
SAP S/4HANA 100-106 - Authenticated Arbitrary File Upload and Script Execution in F0743 Create Single Payment
Jan 14, 2022
CVSS 8.1
EPSS 0.01
CVE-2022-22530 HIGH
SAP S/4HANA - F0743 Create Single Payment - Code Injection
Jan 14, 2022
CVSS 8.1
EPSS 0.01
CVE-2022-22529 MEDIUM
SAP Enterprise Threat Detection (ETD) -2.0 - XSS
Jan 14, 2022
CVSS 6.1
EPSS 0.01
CVE-2021-44234 MEDIUM
SAP Business One 10.0 - Sensitive Information Exposure in Extended Log
Jan 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-42067 MEDIUM
SAP NetWeaver AS ABAP and ABAP Platform 701-756, 786 - Authenticated Information Disclosure via S/4 Hana Dashboard
Jan 14, 2022
CVSS 4.3
EPSS 0.01
CVE-2021-44235 MEDIUM
SAP NetWeaver AS ABAP 700-756 - Authenticated OS Command Injection via Transaction Class Builder
Dec 14, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-44233 HIGH
SAP GRC Access Control V1100_700 V1100_731 V1200_750 - Authenticated Privilege Escalation
Dec 14, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-44232 HIGH
SAF-T Framework - Path Traversal in Transaction SAFTN_G
Dec 14, 2021
CVSS 7.7
EPSS 0.01
CVE-2021-44231 CRITICAL
SAP ABAP Platform - Code Injection via Text Extraction Reports
Dec 14, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-42070 LOW
SAP 3D Visual Enterprise Viewer 9.0 - Denial of Service via Malformed Jupiter Tessellation File
Dec 14, 2021
CVSS 3.3
EPSS 0.01
CVE-2021-42069 LOW
SAP 3D Visual Enterprise Viewer 9.0 - Denial of Service via Malformed TIFF File
Dec 14, 2021
CVSS 3.3
EPSS 0.01
CVE-2021-42068 LOW
SAP 3D Visual Enterprise Viewer 9.0 - Denial of Service via Malicious GIF File
Dec 14, 2021
CVSS 3.3
EPSS 0.01