sap

1,577 tracked vulnerabilities.

CVE-2021-27624 MEDIUM
SAP Internet Graphics Service <=7.81 - Unauthenticated DoS via CiXMLIStreamRawBuffer::readRaw()
Jun 09, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-27623 MEDIUM
SAP Internet Graphics Service <=7.81 - Unauthenticated DoS via Malicious IGS Request
Jun 09, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-27622 MEDIUM
SAP Internet Graphics Service -<7.20,7.20EXT,7.53,7.20_EX2,7.81 - DoS
Jun 09, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-27621 MEDIUM
SAP NetWeaver Application Server for Java <7.51 - Info Disclosure
Jun 09, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-27620 MEDIUM
SAP Internet Graphics Service <=7.81 - Unauthenticated DoS via Ups::AddPart() Memory Corruption
Jun 09, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-27615 MEDIUM
SAP Manufacturing Execution 15.1, 15.2, 15.3, 15.4 - Cross-Site Scripting via Missing HTTP Security Headers
Jun 09, 2021
CVSS 5.4
EPSS 0.01
CVE-2021-27607 HIGH
SAP NetWeaver ABAP Server and ABAP Platform - DoS
Jun 09, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-27606 HIGH
SAP NetWeaver ABAP Server and ABAP Platform - Unauthenticated Denial of Service via EncOAMParamStore()
Jun 09, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-27597 HIGH
SAP NetWeaver AS for ABAP (RFC Gateway) - Unauthenticated Denial of Service via memmove() Input Validation
Jun 09, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-21490 MEDIUM
SAP NetWeaver AS ABAP Web Survey - Reflected Cross-Site Scripting
Jun 09, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-21473 MEDIUM
SAP NetWeaver AS ABAP and ABAP Platform - Missing Authorization in SRM_RFC_SUBMIT_REPORT Function Module
Jun 09, 2021
CVSS 6.3
EPSS 0.01
CVE-2021-33668 HIGH
SAP InfraBox < 1.2.1 - Unauthenticated LDAP Injection
Jun 09, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-27619 MEDIUM
SAP Commerce (Backoffice Search) - Info Disclosure
May 11, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-27618 MEDIUM
SAP NetWeaver Process Integration 7.10-7.50 - Unrestricted Upload of File with Dangerous Type
May 11, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-27617 MEDIUM
SAP NetWeaver Process Integration 7.10-7.50 - Denial of Service via Malicious XML Upload
May 11, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-27616 HIGH
SAP Business One Hana Chef Cookbook <10.0 - Info Disclosure
May 11, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-27614 HIGH
SAP Business One Hana Chef Cookbook - Code Injection
May 11, 2021
CVSS 7.1
EPSS 0.00
CVE-2021-27613 HIGH
SAP Business One Chef <10.0 - Info Disclosure
May 11, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-27612 MEDIUM
SAP GUI for Windows <7.70 - Open Redirect
May 11, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-27611 MEDIUM
SAP NetWeaver AS ABAP - Code Injection
May 11, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-27608 HIGH
SAPSetup <9.0 - Privilege Escalation
Apr 14, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-27604 MEDIUM
SAP NetWeaver ABAP Server/ABAP Platform <7.50 - XSS
Apr 14, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-27599 MEDIUM
SAP NetWeaver ABAP Server/ABAP Platform <7.50 - Info Disclosure
Apr 14, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-27609 MEDIUM
SAP Focused RUN - Privilege Escalation
Apr 13, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-27605 MEDIUM
SAP HCM Travel Management Fiori Apps V2 - Privilege Escalation
Apr 13, 2021
CVSS 4.3
EPSS 0.01