sap
1,577 tracked vulnerabilities.
CVE-2020-6217
MEDIUM
SAP NetWeaver AS ABAP Business Server Pages Test Application IT00 -...
Apr 14, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-6215
MEDIUM
SAP NetWeaver AS ABAP Business Server Pages Test Application IT00 -...
Apr 14, 2020
CVSS 6.1
EPSS 0.02
CVE-2020-6211
MEDIUM
SAP BusinessObjects <4.2 - Open Redirect
Apr 14, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-6195
CRITICAL
SAP Business Objects <4.2 - Info Disclosure
Apr 14, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-6238
CRITICAL
SAP Commerce Cloud 6.6, 6.7, 1808, 1811, 1905 - XML External Entity Injection in Rest API Servlet xyformsweb
Apr 14, 2020
CVSS 9.3
EPSS 0.01
CVE-2020-6237
HIGH
SAP Business Objects <4.3 - Info Disclosure
Apr 14, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-6236
HIGH
SAP Landscape Management 3.0 - SAP Adaptive Extensions 1.0 - Privil...
Apr 14, 2020
CVSS 7.2
EPSS 0.01
CVE-2020-6235
HIGH
SAP Solution Manager <7.2 - Missing Authentication
Apr 14, 2020
CVSS 8.6
EPSS 0.02
CVE-2020-6234
HIGH
SAP Host Agent <7.21 - Privilege Escalation
Apr 14, 2020
CVSS 7.2
EPSS 0.04
CVE-2020-6233
MEDIUM
SAP S/4 HANA Financial Products Subledger and Banking Services - Authenticated Denial of Service via Analysis Report
Apr 14, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-6232
MEDIUM
SAP Commerce <1905 - Info Disclosure
Apr 14, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-6231
MEDIUM
SAP BusinessObjects Business Intelligence Platform 4.2 - Cross-Site Scripting in Web Intelligence HTML Interface
Apr 14, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-6230
HIGH
SAP OrientDB 3.0 - Authenticated Code Injection
Apr 14, 2020
CVSS 7.2
EPSS 0.01
CVE-2020-6229
MEDIUM
SAP NetWeaver AS ABAP Business Server Pages 700-75E - Reflected Cross-Site Scripting
Apr 14, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-6228
HIGH
SAP Business Client <7.0 - Info Disclosure
Apr 14, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-6227
HIGH
SAP BusinessObjects <4.2 - Code Injection
Apr 14, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-6226
MEDIUM
SAP BusinessObjects Business Intelligence Platform 4.2 - Cross-Site Scripting in Web Intelligence HTML Interface
Apr 14, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-6224
MEDIUM
SAP NetWeaver AS Java - Info Disclosure
Apr 14, 2020
CVSS 6.2
EPSS 0.01
CVE-2020-6223
MEDIUM
SAP BusinessObjects Business Intelligence Platform 4.1-4.2 - Content Spoofing via Error Page Modification
Apr 14, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-6222
MEDIUM
SAP BusinessObjects Business Intelligence Platform 4.1-4.2 - Cross-Site Scripting in Web Intelligence HTML Interface
Apr 14, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-6221
MEDIUM
SAP BusinessObjects Business Intelligence Platform 4.1-4.2 - Cross-Site Scripting in Web Intelligence HTML Interface
Apr 14, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-6219
HIGH
SAP Business Objects <4.3 - Deserialization
Apr 14, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-6218
MEDIUM
SAP BusinessObjects <4.2 - Info Disclosure
Apr 14, 2020
CVSS 5.0
EPSS 0.01
CVE-2020-6216
MEDIUM
SAP Business Objects BI Launchpad <4.2 - XSS
Apr 14, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-6214
MEDIUM
SAP S/4HANA 100 - Privilege Escalation
Apr 14, 2020
CVSS 4.7
EPSS 0.01
Products
3d_visual_enterprise_viewer 131
netweaver 102
netweaver_application_server_abap 86
businessobjects_business_intelligence_platform 73
netweaver_application_server_java 69
businessobjects_business_intelligence 45
hana 38
solution_manager 33
business_one 31
internet_graphics_server 28
3d_visual_enterprise_author 27
businessobjects 23
netweaver_abap 21
netweaver_process_integration 21
netweaver_enterprise_portal 20
business_objects_business_intelligence_platform 18
commerce_cloud 18
hana_extended_application_services 18
sap_basis 18
s\/4hana 17
disclosure_management 16
host_agent 15
adaptive_server_enterprise 14
enable_now 14
s4core 13
abap_platform 12
customer_relationship_management_webclient_ui 12
netweaver_as_abap 12
sap_db 12
sap_kernel 11
Quick Filters