sap
1,568 tracked vulnerabilities.
CVE-2013-3244
SAP ERP Central Component - Remote Code Execution via CJDB_FILL_MEMORY_FROM_PPB Function
Oct 24, 2013
EPSS 0.01
CVE-2013-5751
SAP NetWeaver 7.x - Path Traversal
Sep 16, 2013
EPSS 0.00
CVE-2013-5723
SAP NetWeaver 7.30 - SQL Injection via ABAD0_DELETE_DERIVATION_TABLE
Sep 12, 2013
EPSS 0.01
CVE-2013-3319
SAP Netweaver 7.03 - Info Disclosure
Aug 16, 2013
EPSS 0.12
CVE-2013-3063
SAP BASIS Communication Services <7.30 - Command Injection
May 01, 2013
EPSS 0.00
CVE-2013-3062
SAP Production Planning and Control - Auth Bypass
May 01, 2013
EPSS 0.00
CVE-2013-3061
SAP ERP Central Component and Healthcare Industry Solution - Authenticated Transaction Restriction Bypass
May 01, 2013
EPSS 0.00
CVE-2012-4341
SAP NetWeaver ABAP 7.x - Remote Code Execution via Crafted Package to TCP Port 3900
Aug 15, 2012
EPSS 0.17
CVE-2012-2612
SAP NetWeaver 7.0 EHP1 and EHP2 - Denial of Service via Crafted SAP Diag Packet
May 15, 2012
EPSS 0.36
CVE-2012-2611
SAP NetWeaver 7.0 EHP1 and EHP2 - Remote Code Execution via DiagTraceR3Info Function
May 15, 2012
EPSS 0.78
CVE-2012-2514
SAP NetWeaver 7.0 EHP1 and EHP2 - Denial of Service via Crafted SAP Diag Packet
May 15, 2012
EPSS 0.36
CVE-2012-2513
SAP NetWeaver 7.0 EHP1 and EHP2 - Denial of Service via Crafted SAP Diag Packet
May 15, 2012
EPSS 0.27
CVE-2012-2512
SAP NetWeaver 7.0 EHP1 and EHP2 - Denial of Service via Crafted SAP Diag Packet
May 15, 2012
EPSS 0.36
CVE-2012-2511
SAP NetWeaver 7.0 EHP1 and EHP2 - Denial of Service via Crafted SAP Diag Packet
May 15, 2012
EPSS 0.26
CVE-2012-1292
SAP NetWeaver 7.0 - Info Disclosure
Feb 23, 2012
EPSS 0.00
CVE-2012-1291
SAP NetWeaver 7.0 - Info Disclosure
Feb 23, 2012
EPSS 0.00
CVE-2012-1290
SAP NetWeaver 7.0 - Cross-Site Scripting via _loadPage Parameter in b2b/auction/container.jsp
Feb 23, 2012
EPSS 0.00
CVE-2012-1289
SAP NetWeaver 7.0 - Authenticated Path Traversal via Logfilename Parameter
Feb 23, 2012
EPSS 0.00
CVE-2011-1517
CRITICAL
SAP NetWeaver 7.0 - Remote Code Execution and Denial of Service via DiagTraceHex() Function
Feb 05, 2020
CVSS 9.8
EPSS 0.02
CVE-2011-5263
SAP NetWeaver < 7.30 - Cross-Site Scripting via RetrieveMailExamples Server Parameter
Feb 12, 2013
EPSS 0.00
CVE-2011-5260
SAP NetWeaver - Cross-Site Scripting via Page Parameter
Feb 12, 2013
EPSS 0.00
CVE-2011-5154
SAP GUI <7.2 - Privilege Escalation
Sep 06, 2012
EPSS 0.00
CVE-2011-4805
SAP Crystal Reports Server 2008 - Cross-Site Scripting via pubDBLogon.jsp Service Parameter
Dec 14, 2011
EPSS 0.00
CVE-2011-4707
SAP NetWeaver - Cross-Site Scripting via VsiTestScan and VsiTestServlet Parameters
Dec 08, 2011
EPSS 0.00
CVE-2010-5326
CRITICAL
KEV
SAP NetWeaver Application Server Java <7.3 - RCE
May 13, 2016
CVSS 10.0
EPSS 0.13
Products
3d_visual_enterprise_viewer 131
netweaver 102
netweaver_application_server_abap 78
businessobjects_business_intelligence_platform 73
netweaver_application_server_java 68
businessobjects_business_intelligence 45
hana 38
solution_manager 33
business_one 31
internet_graphics_server 28
3d_visual_enterprise_author 27
businessobjects 23
netweaver_abap 21
netweaver_process_integration 21
netweaver_enterprise_portal 20
business_objects_business_intelligence_platform 18
commerce_cloud 18
hana_extended_application_services 18
sap_basis 18
s\/4hana 17
disclosure_management 16
host_agent 15
adaptive_server_enterprise 14
enable_now 14
s4core 13
abap_platform 12
customer_relationship_management_webclient_ui 12
netweaver_as_abap 12
sap_db 12
sap_kernel 11
Quick Filters