sap

1,577 tracked vulnerabilities.

CVE-2020-26828 MEDIUM
SAP Disclosure Management <10.1 - Code Injection
Dec 09, 2020
CVSS 6.4
EPSS 0.01
CVE-2020-26826 MEDIUM
SAP NetWeaver AS JAVA <7.51 - Unrestricted File Upload
Dec 09, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-26816 MEDIUM
SAP AS JAVA 7.10-7.50 - Info Disclosure
Dec 09, 2020
CVSS 4.5
EPSS 0.00
CVE-2020-6317 LOW
SAP Adaptive Server Enterprise 15.7, 16.0 - Sensitive Information Exposure in Installation Log Files
Nov 30, 2020
CVSS 3.5
EPSS 0.00
CVE-2020-26825 MEDIUM
SAP Fiori Launchpad News Tile Application 750-755 - Reflected Cross-Site Scripting
Nov 13, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-6316 MEDIUM
SAP ERP and S/4 HANA - Authenticated Missing Authorization in PS Reporting
Nov 10, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-26824 CRITICAL
SAP Solution Manager <7.20 - Privilege Escalation
Nov 10, 2020
CVSS 10.0
EPSS 0.01
CVE-2020-26823 CRITICAL
SAP Solution Manager <7.20 - Privilege Escalation
Nov 10, 2020
CVSS 10.0
EPSS 0.01
CVE-2020-26822 CRITICAL
SAP Solution Manager <7.20 - Privilege Escalation
Nov 10, 2020
CVSS 10.0
EPSS 0.01
CVE-2020-26821 CRITICAL
SAP Solution Manager <7.20 - Privilege Escalation
Nov 10, 2020
CVSS 10.0
EPSS 0.01
CVE-2020-26820 HIGH
SAP NetWeaver AS JAVA -7.20-7.50 - Privilege Escalation
Nov 10, 2020
CVSS 7.2
EPSS 0.04
CVE-2020-26819 HIGH
SAP NetWeaver AS ABAP - Privilege Escalation
Nov 10, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-26818 HIGH
SAP NetWeaver AS ABAP (Web Dynpro) - Info Disclosure
Nov 10, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-26817 HIGH
SAP 3D Visual Enterprise Viewer <9 - DoS
Nov 10, 2020
CVSS 7.8
EPSS 0.01
CVE-2020-26815 HIGH
SAP Fiori Launchpad News Tile Application 750-755 - Server-Side Request Forgery
Nov 10, 2020
CVSS 8.6
EPSS 0.01
CVE-2020-26814 MEDIUM
SAP PGP Module <1.0 - Info Disclosure
Nov 10, 2020
CVSS 4.9
EPSS 0.01
CVE-2020-26811 MEDIUM
SAP Commerce Cloud (Accelerator Payment Mock) 1808, 1811, 1905, 2005 - Unauthenticated Server-Side Request Forgery
Nov 10, 2020
CVSS 5.3
EPSS 0.02
CVE-2020-26810 HIGH
SAP Commerce Cloud (Accelerator Payment Mock) 1808/1811/1905/2005 - DoS via Crafted Request
Nov 10, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-26809 MEDIUM
SAP Commerce Cloud <2005 - Auth Bypass
Nov 10, 2020
CVSS 5.3
EPSS 0.02
CVE-2020-26808 HIGH
SAP AS ABAP(DMIS) <2020 - Code Injection
Nov 10, 2020
CVSS 7.2
EPSS 0.03
CVE-2020-26807 LOW
SAP ERP Client for E-Bilanz <1.0 - Info Disclosure
Nov 10, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-6370 MEDIUM
SAP NetWeaver Design Time Repository 7.11, 7.30, 7.31, 7.40, 7.50 - Cross-Site Scripting
Oct 20, 2020
CVSS 4.8
EPSS 0.01
CVE-2020-6369 MEDIUM
SAP Solution Manager/Focused Run <9.7-10.7 - Auth Bypass
Oct 20, 2020
CVSS 5.9
EPSS 0.03
CVE-2020-6367 MEDIUM
SAP NetWeaver Composite Application Framework -7.50-7.31 - XSS
Oct 20, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-6366 MEDIUM
SAP NetWeaver Compare Systems 7.20-7.50 - Authenticated Arbitrary File Read and Denial of Service via XML Upload
Oct 20, 2020
CVSS 6.5
EPSS 0.01