sap

1,577 tracked vulnerabilities.

CVE-2015-1311
SAP HANA Extended Application Services - Remote Code Execution via ABAP Code Injection
Jan 22, 2015
EPSS 0.02
CVE-2015-1309
SAP NetWeaver ABAP < 7.31 - XML External Entity Injection in eCATT Display XML String
Jan 22, 2015
EPSS 0.02
CVE-2014-9320 CRITICAL
SAP BusinessObjects Edge 4.1 - Privilege Escalation
Aug 09, 2021
CVSS 9.8
EPSS 0.04
CVE-2014-8871 HIGH
hybris Commerce <5.3.0.1 - Path Traversal
Aug 28, 2017
CVSS 7.5
EPSS 0.04
CVE-2014-9595
SAP NetWeaver Dispatcher - Buffer Overflow
Jan 15, 2015
EPSS 0.02
CVE-2014-9594
SAP NetWeaver Dispatcher - Buffer Overflow
Jan 15, 2015
EPSS 0.02
CVE-2014-9569
SAP NetWeaver Business Client for HTML 3.0 - Cross-Site Scripting via Title or Roundtrips Parameter
Jan 07, 2015
EPSS 0.02
CVE-2014-9387
SAP BusinessObjects Edge 4.1 - Privilege Escalation
Dec 17, 2014
EPSS 0.05
CVE-2014-9264
SAP SQL Anywhere - Stack-based Buffer Overflow via Crafted Column Alias
Dec 11, 2014
EPSS 0.04
CVE-2014-8669
SAP Customer Relationship Management - Remote Code Execution in Promotion Guidelines Module
Nov 06, 2014
EPSS 0.05
CVE-2014-8668
SAP Contract Accounting - SQL Injection
Nov 06, 2014
EPSS 0.01
CVE-2014-8667
SAP HANA Web-based Development Workbench - Cross-Site Scripting
Nov 06, 2014
EPSS 0.01
CVE-2014-8666
SAP Business Intelligence - Info Disclosure
Nov 06, 2014
EPSS 0.01
CVE-2014-8665
SAP Business Intelligence Development Workbench - Info Disclosure
Nov 06, 2014
EPSS 0.01
CVE-2014-8664
SAP Environment, Health, and Safety Management - SQL Injection
Nov 06, 2014
EPSS 0.01
CVE-2014-8663
SAP NetWeaver Business Warehouse - SQL Injection
Nov 06, 2014
EPSS 0.01
CVE-2014-8662
SAP Payroll Process - Denial of Service via Session Handling
Nov 06, 2014
EPSS 0.01
CVE-2014-8661
SAP Customer Relationship Management Internet Sales - Remote Code Execution
Nov 06, 2014
EPSS 0.03
CVE-2014-8660
SAP Document Management Services - Command Injection
Nov 06, 2014
EPSS 0.00
CVE-2014-8659
SAP Environment, Health, and Safety - Path Traversal
Nov 06, 2014
EPSS 0.02
CVE-2014-0995
SAP NetWeaver <= 7.01 - Denial of Service via Trace Pattern Wildcard
Nov 06, 2014
EPSS 0.10
CVE-2014-8592
SAP NetWeaver 7.02 and 7.3 - Denial of Service via Crafted Request
Nov 04, 2014
EPSS 0.02
CVE-2014-8591
SAP NetWeaver 7.02 and 7.3 - Denial of Service in Internet Communication Manager
Nov 04, 2014
EPSS 0.02
CVE-2014-8590
SAP NetWeaver AS Java - XML External Entity Injection via Web Service Navigator
Nov 04, 2014
EPSS 0.02
CVE-2014-8589
SAP Network Interface Router 40.4 - Denial of Service via Integer Overflow
Nov 04, 2014
EPSS 0.02