sap
1,577 tracked vulnerabilities.
CVE-2021-33674
MEDIUM
SAP Contact Center 700 - Reflected Cross-Site Scripting via Email Creation
Sep 14, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-33673
MEDIUM
SAP Contact Center 700 - Stored Cross-Site Scripting in Employee Directory
Sep 14, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-33672
CRITICAL
SAP Contact Center 700 - Stored Cross-Site Scripting and Remote Code Execution via Chat Message
Sep 14, 2021
CVSS 9.6
EPSS 0.01
CVE-2021-21489
MEDIUM
SAP NetWeaver Enterprise Portal 7.10-7.50 - Stored Cross-Site Scripting via User Data
Sep 14, 2021
CVSS 4.8
EPSS 0.01
CVE-2021-33707
MEDIUM
SAP NetWeaver Knowledge Management - Open Redirect
Aug 10, 2021
CVSS 6.1
EPSS 0.02
CVE-2021-33706
MEDIUM
SAP InfraBox < 1.2.2 - Authenticated Log Modification via Improper Input Validation
Aug 10, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-33703
MEDIUM
NetWeaver Enterprise Portal -7.30-7.50 - XSS
Aug 10, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-33702
MEDIUM
NetWeaver Enterprise Portal <7.50 - XSS
Aug 10, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-33699
MEDIUM
SAP Fiori Client - Task Hijacking via AndroidManifest.xml Misconfiguration
Aug 10, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-33689
MEDIUM
SAP NetWeaver <7.50 - Info Disclosure
Jul 14, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-33687
MEDIUM
SAP NetWeaver AS JAVA - Info Disclosure
Jul 14, 2021
CVSS 4.9
EPSS 0.02
CVE-2021-33684
MEDIUM
SAP NetWeaver AS ABAP and ABAP Platform - Memory Corruption
Jul 14, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-33683
MEDIUM
SAP Web Dispatcher and ICM - HTTP Request Smuggling
Jul 14, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-33682
MEDIUM
SAP Lumira Server 2.4 - Stored Cross-Site Scripting
Jul 14, 2021
CVSS 5.4
EPSS 0.01
CVE-2021-33681
MEDIUM
SAP 3D Visual Enterprise Viewer <9 - Buffer Overflow
Jul 14, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-33680
MEDIUM
SAP 3D Visual Enterprise Viewer <9 - Buffer Overflow
Jul 14, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-33678
MEDIUM
SAP NetWeaver AS ABAP - Code Injection
Jul 14, 2021
CVSS 6.5
EPSS 0.03
CVE-2021-33677
HIGH
SAP NetWeaver <700-750 - Info Disclosure
Jul 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-33676
HIGH
SAP CRM <715 - Privilege Escalation
Jul 14, 2021
CVSS 7.2
EPSS 0.01
CVE-2021-33671
HIGH
SAP NetWeaver Guided Procedures - Privilege Escalation
Jul 14, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-33670
HIGH
SAP NetWeaver AS Java 7.10-7.50 - Denial of Service via HTTP Method Flooding
Jul 14, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-33667
MEDIUM
SAP Business Objects Web Intelligence <430 - Info Disclosure
Jul 14, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-27610
CRITICAL
SAP NetWeaver ABAP Server/ABAP Platform - Info Disclosure
Jun 16, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-33669
HIGH
SAP Mobile SDK Certificate Provider < 3.0.8 - Insecure Temporary File Storage
Jun 09, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-33666
MEDIUM
SAP Commerce Cloud 100 - Cross-Site Scripting via MIME Sniffing
Jun 09, 2021
CVSS 6.1
EPSS 0.01
Products
3d_visual_enterprise_viewer 131
netweaver 102
netweaver_application_server_abap 86
businessobjects_business_intelligence_platform 73
netweaver_application_server_java 69
businessobjects_business_intelligence 45
hana 38
solution_manager 33
business_one 31
internet_graphics_server 28
3d_visual_enterprise_author 27
businessobjects 23
netweaver_abap 21
netweaver_process_integration 21
netweaver_enterprise_portal 20
business_objects_business_intelligence_platform 18
commerce_cloud 18
hana_extended_application_services 18
sap_basis 18
s\/4hana 17
disclosure_management 16
host_agent 15
adaptive_server_enterprise 14
enable_now 14
s4core 13
abap_platform 12
customer_relationship_management_webclient_ui 12
netweaver_as_abap 12
sap_db 12
sap_kernel 11
Quick Filters