sap

1,568 tracked vulnerabilities.

CVE-2015-7727
SAP HANA DB <1.00.73.00.389160 - SQL Injection
Oct 15, 2015
EPSS 0.01
CVE-2015-7726
SAP HANA - Authenticated Cross-Site Scripting via Role Deletion in Web-based Development Workbench
Oct 15, 2015
EPSS 0.00
CVE-2015-7725
SAP HANA DB <1.00.091.00.1418659308 - SQL Injection
Oct 15, 2015
EPSS 0.01
CVE-2015-6507
SAP HANA hdbsql 1.00.091.00 - Memory Corruption
Oct 15, 2015
EPSS 0.00
CVE-2015-7239
SAP NetWeaver J2EE Engine 7.40 - SQL Injection via BP_FIND_JOBS_WITH_PROGRAM Function Module
Sep 18, 2015
EPSS 0.00
CVE-2015-6664
SAP Mobile Platform 2.3 - XML External Entity Injection in Application Import
Aug 24, 2015
EPSS 0.01
CVE-2015-6663
SAP Afaria 7 - Stored Cross-Site Scripting via Client Name Data
Aug 24, 2015
EPSS 0.00
CVE-2015-6662
SAP NetWeaver Portal 7.4 - XML External Entity Injection
Aug 24, 2015
EPSS 0.01
CVE-2015-3621
SAP Enterprise Central Component - Untrusted Search Path Privilege Escalation
Jul 16, 2015
EPSS 0.00
CVE-2015-3449
SAP Afaria <7.0.6398.0 - Privilege Escalation
Jul 16, 2015
EPSS 0.00
CVE-2015-5068
SAP Mobile Platform 3 - XML External Entity Injection via Crafted XML Request
Jun 24, 2015
EPSS 0.01
CVE-2015-5067
SAP NetWeaver - Hardcoded Credentials in Cross-System Tools and Data Transfer Workbench
Jun 24, 2015
EPSS 0.02
CVE-2015-4161
SAP Afaria - Unauthenticated Unspecified Impact via Improper Access Restriction
Jun 02, 2015
EPSS 0.00
CVE-2015-4160
SAP ASE Database Platform - SQL Injection
Jun 02, 2015
EPSS 0.00
CVE-2015-4159
SAP HANA Web-based Development Workbench - SQL Injection
Jun 02, 2015
EPSS 0.00
CVE-2015-4158
SAP NetWeaver ABAP and Java Application Server - Denial of Service
Jun 02, 2015
EPSS 0.00
CVE-2015-4157
SAP Content Server - Denial of Service
Jun 02, 2015
EPSS 0.00
CVE-2015-2282
SAP GUI - Stack-based Buffer Overflow in LZC Decompression
Jun 02, 2015
EPSS 0.01
CVE-2015-2278
SAP GUI - Denial of Service via LZH Decompression Out-of-Bounds Read
Jun 02, 2015
EPSS 0.01
CVE-2015-3995
SAP HANA DB 1.00.73.00.389160 - Authenticated Arbitrary File Read via IMPORT FROM SQL Statement
May 29, 2015
EPSS 0.00
CVE-2015-3994
SAP HANA - Authenticated Log Spoofing via grant.xsfunc Application
May 29, 2015
EPSS 0.00
CVE-2015-4092
SAP Afaria 7.00.6620.2 SP5 - Buffer Overflow in XComms Process
May 26, 2015
EPSS 0.02
CVE-2015-4091
SAP NetWeaver AS Java 7.4 - XML External Entity Injection via CIM UPLOAD
May 26, 2015
EPSS 0.01
CVE-2015-3981
SAP NetWeaver RFC SDK - Exposure of Sensitive Information
May 12, 2015
EPSS 0.00
CVE-2015-3980
SAP Customer Relationship Management - SQL Injection in Business Rules Framework
May 12, 2015
EPSS 0.00
Products
3d_visual_enterprise_viewer 131 netweaver 102 netweaver_application_server_abap 78 businessobjects_business_intelligence_platform 73 netweaver_application_server_java 68 businessobjects_business_intelligence 45 hana 38 solution_manager 33 business_one 31 internet_graphics_server 28 3d_visual_enterprise_author 27 businessobjects 23 netweaver_abap 21 netweaver_process_integration 21 netweaver_enterprise_portal 20 business_objects_business_intelligence_platform 18 commerce_cloud 18 hana_extended_application_services 18 sap_basis 18 s\/4hana 17 disclosure_management 16 host_agent 15 adaptive_server_enterprise 14 enable_now 14 s4core 13 abap_platform 12 customer_relationship_management_webclient_ui 12 netweaver_as_abap 12 sap_db 12 sap_kernel 11
Quick Filters
Critical CVEs With Exploits In CISA KEV