sap

1,577 tracked vulnerabilities.

CVE-2021-33674 MEDIUM
SAP Contact Center 700 - Reflected Cross-Site Scripting via Email Creation
Sep 14, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-33673 MEDIUM
SAP Contact Center 700 - Stored Cross-Site Scripting in Employee Directory
Sep 14, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-33672 CRITICAL
SAP Contact Center 700 - Stored Cross-Site Scripting and Remote Code Execution via Chat Message
Sep 14, 2021
CVSS 9.6
EPSS 0.01
CVE-2021-21489 MEDIUM
SAP NetWeaver Enterprise Portal 7.10-7.50 - Stored Cross-Site Scripting via User Data
Sep 14, 2021
CVSS 4.8
EPSS 0.01
CVE-2021-33707 MEDIUM
SAP NetWeaver Knowledge Management - Open Redirect
Aug 10, 2021
CVSS 6.1
EPSS 0.02
CVE-2021-33706 MEDIUM
SAP InfraBox < 1.2.2 - Authenticated Log Modification via Improper Input Validation
Aug 10, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-33703 MEDIUM
NetWeaver Enterprise Portal -7.30-7.50 - XSS
Aug 10, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-33702 MEDIUM
NetWeaver Enterprise Portal <7.50 - XSS
Aug 10, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-33699 MEDIUM
SAP Fiori Client - Task Hijacking via AndroidManifest.xml Misconfiguration
Aug 10, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-33689 MEDIUM
SAP NetWeaver <7.50 - Info Disclosure
Jul 14, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-33687 MEDIUM
SAP NetWeaver AS JAVA - Info Disclosure
Jul 14, 2021
CVSS 4.9
EPSS 0.02
CVE-2021-33684 MEDIUM
SAP NetWeaver AS ABAP and ABAP Platform - Memory Corruption
Jul 14, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-33683 MEDIUM
SAP Web Dispatcher and ICM - HTTP Request Smuggling
Jul 14, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-33682 MEDIUM
SAP Lumira Server 2.4 - Stored Cross-Site Scripting
Jul 14, 2021
CVSS 5.4
EPSS 0.01
CVE-2021-33681 MEDIUM
SAP 3D Visual Enterprise Viewer <9 - Buffer Overflow
Jul 14, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-33680 MEDIUM
SAP 3D Visual Enterprise Viewer <9 - Buffer Overflow
Jul 14, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-33678 MEDIUM
SAP NetWeaver AS ABAP - Code Injection
Jul 14, 2021
CVSS 6.5
EPSS 0.03
CVE-2021-33677 HIGH
SAP NetWeaver <700-750 - Info Disclosure
Jul 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-33676 HIGH
SAP CRM <715 - Privilege Escalation
Jul 14, 2021
CVSS 7.2
EPSS 0.01
CVE-2021-33671 HIGH
SAP NetWeaver Guided Procedures - Privilege Escalation
Jul 14, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-33670 HIGH
SAP NetWeaver AS Java 7.10-7.50 - Denial of Service via HTTP Method Flooding
Jul 14, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-33667 MEDIUM
SAP Business Objects Web Intelligence <430 - Info Disclosure
Jul 14, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-27610 CRITICAL
SAP NetWeaver ABAP Server/ABAP Platform - Info Disclosure
Jun 16, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-33669 HIGH
SAP Mobile SDK Certificate Provider < 3.0.8 - Insecure Temporary File Storage
Jun 09, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-33666 MEDIUM
SAP Commerce Cloud 100 - Cross-Site Scripting via MIME Sniffing
Jun 09, 2021
CVSS 6.1
EPSS 0.01