sap

1,577 tracked vulnerabilities.

CVE-2018-2483 MEDIUM
SAP BusinessObjects Business Intelligence Platform 4.1-4.2 - HTTP Verb Tampering in Central Management Console
Nov 13, 2018
CVSS 4.3
EPSS 0.01
CVE-2018-2482 HIGH
SAP Mobile Secure <6.60.19942.0 - DoS
Nov 13, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-2481 HIGH
SAP Advanced Business Application Pro... - Improper Privilege Management
Nov 13, 2018
CVSS 7.2
EPSS 0.01
CVE-2018-2479 MEDIUM
SAP BusinessObjects Business Intelligence Platform 4.1-4.2 - Cross-Site Scripting
Nov 13, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-2478 HIGH
SAP Basis 7.0-7.02, 7.10-7.11, 7.30, 7.31, 7.40, 7.50-7.53 - OS Command Injection via TREX/BWA Input
Nov 13, 2018
CVSS 7.2
EPSS 0.02
CVE-2018-2477 HIGH
SAP NetWeaver <7.51 - Info Disclosure
Nov 13, 2018
CVSS 8.8
EPSS 0.02
CVE-2018-2476 MEDIUM
SAP NetWeaver 7.30, 7.31, 7.40 - Open Redirect via Insufficient URL Validation
Nov 13, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-2473 MEDIUM
SAP BusinessObjects BI Platform 4.1-4.2 - DoS via Web Intelligence Richclient Gateway
Nov 13, 2018
CVSS 6.5
EPSS 0.02
CVE-2018-2474 MEDIUM
SAP Fiori 1.0 for SAP ERP HCM - Cross-Site Request Forgery in Approve Leave Request App
Oct 09, 2018
CVSS 6.5
EPSS 0.01
CVE-2018-2472 MEDIUM
SAP BusinessObjects Business Intelligence Platform 4.10 and 4.20 - Cross-Site Scripting in Web Intelligence DHTML Client
Oct 09, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-2471 HIGH
SAP BusinessObjects <4.10,4.20 - Info Disclosure
Oct 09, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-2470 MEDIUM
SAP NetWeaver 7.0-7.02, 7.30, 7.31, 7.40, 7.50-7.53 - Cross-Site Scripting
Oct 09, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-2469 HIGH
SAP Adaptive Server Enterprise 15.7 and 16.0 - Unauthorized Information Access
Oct 09, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-2468 HIGH
SAP Adaptive Server Enterprise 15.7 and 16.0 - Unauthorized Information Access
Oct 09, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-2467 MEDIUM
SAP BusinessObjects BI Platform <4.3 - Info Disclosure
Oct 09, 2018
CVSS 5.3
EPSS 0.01
CVE-2018-2466 MEDIUM
SAP Data Services 4.2 - Cross-Site Scripting in Management Console
Oct 09, 2018
CVSS 5.4
EPSS 0.01
CVE-2018-2465 HIGH
SAP HANA 1.0 and 2.0 - Denial of Service via OData Parser XML Validation Bypass
Sep 11, 2018
CVSS 7.5
EPSS 0.03
CVE-2018-2464 MEDIUM
SAP NetWeaver WebDynpro Java 7.20-7.50 - Stored Cross-Site Scripting
Sep 11, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-2463 HIGH
SAP Hybris 6.0-6.7 - Server-Side Request Forgery via XML Parser Misconfiguration
Sep 11, 2018
CVSS 8.6
EPSS 0.02
CVE-2018-2462 HIGH
SAP NetWeaver BI 7.30-7.50 - XML External Entity Injection in BEx Web Java Runtime Export Web Service
Sep 11, 2018
CVSS 8.8
EPSS 0.02
CVE-2018-2461 HIGH
SAP People Profile - Missing Authorization Check
Sep 11, 2018
CVSS 8.8
EPSS 0.01
CVE-2018-2460 MEDIUM
SAP Business One Android 1.2 - Improper Certificate Validation
Sep 11, 2018
CVSS 5.9
EPSS 0.01
CVE-2018-2459 HIGH
SAP Mobile Platform <3.0 - Info Disclosure
Sep 11, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-2458 HIGH
SAP Business One <9.3 - Info Disclosure
Sep 11, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-2457 MEDIUM
SAP Adaptive Server Enterprise <16.0 - Info Disclosure
Sep 11, 2018
CVSS 6.5
EPSS 0.01