sap

1,577 tracked vulnerabilities.

CVE-2020-6210 MEDIUM
SAP Fiori Launchpad 753 754 - Reflected Cross-Site Scripting via Meta Tag Injection
Mar 10, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-6209 HIGH
SAP Disclosure Mgmt <10.1 - Privilege Escalation
Mar 10, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-6208 HIGH
SAP Crystal Reports 4.1-4.2 - Authenticated Remote Code Execution via Use-After-Free
Mar 10, 2020
CVSS 8.2
EPSS 0.01
CVE-2020-6207 CRITICAL KEVNUCLEI
SAP Solution Manager 7.2 - Auth Bypass
Mar 10, 2020
CVSS 9.8
EPSS 0.98
CVE-2020-6206 MEDIUM
SAP Cloud Platform Integration - CSRF
Mar 10, 2020
CVSS 4.3
EPSS 0.00
CVE-2020-6205 MEDIUM
SAP NetWeaver AS ABAP Business Server Pages - XSS
Mar 10, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-6204 MEDIUM
SAP Treasury and Risk Management - Info Disclosure
Mar 10, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-6203 CRITICAL
SAP NetWeaver UDDI Server - Path Traversal
Mar 10, 2020
CVSS 9.1
EPSS 0.02
CVE-2020-6202 HIGH
SAP NetWeaver Application Server Java - Missing XML Validation
Mar 10, 2020
CVSS 7.2
EPSS 0.01
CVE-2020-6201 MEDIUM
SAP Commerce (Testweb Extension) -6.6-7 - XSS
Mar 10, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-6200 MEDIUM
SAP Commerce Cloud 6.6, 6.7, 1808, 1811 - Cross-Site Scripting via AngularJS Template Injection
Mar 10, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-6199 MEDIUM
SAP ERP <618 - SAP FIN <730, S4HANA <105 - Missing Authorization Check
Mar 10, 2020
CVSS 5.4
EPSS 0.00
CVE-2020-6198 CRITICAL
SAP Solution Manager <720 - Unauthenticated RCE
Mar 10, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-6197 LOW
SAP Enable Now <1908 - Info Disclosure
Mar 10, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-6196 HIGH
SAP BusinessObjects Mobile <4.2 - DoS
Mar 10, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-6178 MEDIUM
SAP Enable Now <1911 - Info Disclosure
Mar 10, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-6193 MEDIUM
SAP NetWeaver Knowledge Management 7.30, 7.31, 7.40, 7.50 - Unauthenticated Reflected Cross-Site Scripting
Feb 12, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-6192 HIGH
SAP Landscape Management <3.0 - Command Injection
Feb 12, 2020
CVSS 7.2
EPSS 0.02
CVE-2020-6191 HIGH
SAP Landscape Management <3.0 - Privilege Escalation
Feb 12, 2020
CVSS 7.2
EPSS 0.02
CVE-2020-6190 MEDIUM
SAP NetWeaver AS Java - Info Disclosure
Feb 12, 2020
CVSS 5.8
EPSS 0.01
CVE-2020-6189 MEDIUM
SAP BusinessObjects <4.2 - Info Disclosure
Feb 12, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-6188 HIGH
SAP ERP/S/4 HANA - Missing Authorization Check
Feb 12, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-6187 MEDIUM
SAP NetWeaver Guided Procedures 7.10-7.50 - XML External Entity Injection
Feb 12, 2020
CVSS 4.9
EPSS 0.01
CVE-2020-6186 HIGH
SAP Host Agent 7.21 - Denial of Service via Authentication Request Processing
Feb 12, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-6185 MEDIUM
SAP NetWeaver <7.40 & SAP S/4HANA <7.54 - XSS
Feb 12, 2020
CVSS 5.4
EPSS 0.01