sap

1,568 tracked vulnerabilities.

CVE-2021-21450 HIGH
SAP 3D Visual Enterprise Viewer 9 - Denial of Service via Manipulated PSD File
Jan 12, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-21449 HIGH
SAP 3D Visual Enterprise Viewer 9 - Denial of Service via Manipulated IFF File
Jan 12, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-21448 MEDIUM
SAP GUI for Windows <7.60 - Info Disclosure
Jan 12, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-21447 MEDIUM
SAP BusinessObjects BI 410, 420 - Authenticated Stored XSS in Input Control
Jan 12, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-21446 HIGH
SAP NetWeaver AS ABAP 740,750-755 - Unauthenticated Denial of Service
Jan 12, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-21445 MEDIUM
SAP Commerce Cloud 1808, 1811, 1905, 2005, 2011 - HTTP Response Smuggling via Content Type Header
Jan 12, 2021
CVSS 5.4
EPSS 0.00
CVE-2020-6220 MEDIUM
SAP Business Objects Business Intelligence Platform 4.1 4.2 - Cross-Site Scripting in BI Launchpad and CMC
Jun 06, 2022
CVSS 4.7
EPSS 0.00
CVE-2020-26838 CRITICAL
SAP Business Warehouse/SAP BW4HANA - Code Injection
Dec 09, 2020
CVSS 9.1
EPSS 0.02
CVE-2020-26837 CRITICAL
SAP Solution Manager 7.2 - Path Traversal
Dec 09, 2020
CVSS 9.1
EPSS 0.01
CVE-2020-26836 MEDIUM NUCLEI
SAP Solution Manager 720 - Open Redirect
Dec 09, 2020
CVSS 6.1
EPSS 0.08
CVE-2020-26835 MEDIUM
SAP NetWeaver AS ABAP 740, 750, 751, 752, 753, 754 - Reflected Cross-Site Scripting via URL Parameter
Dec 09, 2020
CVSS 6.1
EPSS 0.00
CVE-2020-26834 MEDIUM
SAP HANA Database 2.0 - Auth Bypass
Dec 09, 2020
CVSS 5.4
EPSS 0.00
CVE-2020-26832 HIGH
SAP AS ABAP/S4 HANA - Privilege Escalation
Dec 09, 2020
CVSS 7.6
EPSS 0.00
CVE-2020-26831 CRITICAL
SAP BusinessObjects BI Platform - SSRF
Dec 09, 2020
CVSS 9.6
EPSS 0.01
CVE-2020-26830 HIGH
SAP Solution Manager 7.2 - Privilege Escalation
Dec 09, 2020
CVSS 8.1
EPSS 0.00
CVE-2020-26829 CRITICAL
SAP NetWeaver AS JAVA - Privilege Escalation
Dec 09, 2020
CVSS 10.0
EPSS 0.04
CVE-2020-26828 MEDIUM
SAP Disclosure Management <10.1 - Code Injection
Dec 09, 2020
CVSS 6.4
EPSS 0.00
CVE-2020-26826 MEDIUM
SAP NetWeaver AS JAVA <7.51 - Unrestricted File Upload
Dec 09, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-26816 MEDIUM
SAP AS JAVA 7.10-7.50 - Info Disclosure
Dec 09, 2020
CVSS 4.5
EPSS 0.00
CVE-2020-6317 LOW
SAP Adaptive Server Enterprise 15.7, 16.0 - Sensitive Information Exposure in Installation Log Files
Nov 30, 2020
CVSS 3.5
EPSS 0.00
CVE-2020-26825 MEDIUM
SAP Fiori Launchpad News Tile Application 750-755 - Reflected Cross-Site Scripting
Nov 13, 2020
CVSS 6.1
EPSS 0.00
CVE-2020-6316 MEDIUM
SAP ERP and S/4 HANA - Authenticated Missing Authorization in PS Reporting
Nov 10, 2020
CVSS 4.3
EPSS 0.00
CVE-2020-26824 CRITICAL
SAP Solution Manager <7.20 - Privilege Escalation
Nov 10, 2020
CVSS 10.0
EPSS 0.01
CVE-2020-26823 CRITICAL
SAP Solution Manager <7.20 - Privilege Escalation
Nov 10, 2020
CVSS 10.0
EPSS 0.00
CVE-2020-26822 CRITICAL
SAP Solution Manager <7.20 - Privilege Escalation
Nov 10, 2020
CVSS 10.0
EPSS 0.01
Products
3d_visual_enterprise_viewer 131 netweaver 102 netweaver_application_server_abap 78 businessobjects_business_intelligence_platform 73 netweaver_application_server_java 68 businessobjects_business_intelligence 45 hana 38 solution_manager 33 business_one 31 internet_graphics_server 28 3d_visual_enterprise_author 27 businessobjects 23 netweaver_abap 21 netweaver_process_integration 21 netweaver_enterprise_portal 20 business_objects_business_intelligence_platform 18 commerce_cloud 18 hana_extended_application_services 18 sap_basis 18 s\/4hana 17 disclosure_management 16 host_agent 15 adaptive_server_enterprise 14 enable_now 14 s4core 13 abap_platform 12 customer_relationship_management_webclient_ui 12 netweaver_as_abap 12 sap_db 12 sap_kernel 11
Quick Filters
Critical CVEs With Exploits In CISA KEV