sap

1,577 tracked vulnerabilities.

CVE-2013-6819
SAP NetWeaver - Cross-Site Scripting in Performance Provider
Nov 20, 2013
EPSS 0.01
CVE-2013-6820
SAP NetWeaver Development Infrastructure - Unrestricted File Upload and Remote Code Execution
Nov 20, 2013
EPSS 0.04
CVE-2013-6818
SAP NetWeaver Logviewer 6.30 - Security Check Bypass
Nov 20, 2013
EPSS 0.01
CVE-2013-6817
SAP Network Interface Router 7.30 - Remote Code Execution via Crafted NI Route Messages
Nov 20, 2013
EPSS 0.03
CVE-2013-6816
SAP NetWeaver - Cross-Site Scripting in JavaDumpService and DataCollector Servlets
Nov 20, 2013
EPSS 0.01
CVE-2013-6814
SAP NetWeaver < 7.02 - Unvalidated Redirect
Nov 20, 2013
EPSS 0.02
CVE-2013-6815
SAP NetWeaver < 7.31 - Denial of Service via XML External Entity Injection in SHSTI_UPLOAD_XML
Nov 20, 2013
EPSS 0.02
CVE-2013-6284
SAP ERP Central Component - Remote Code Execution in Statutory Reporting for Insurance
Oct 26, 2013
EPSS 0.02
CVE-2013-6244
SAP NetWeaver < 7.31 - XML External Entity Injection via Live Update Webdynpro Application
Oct 24, 2013
EPSS 0.02
CVE-2013-3244
SAP ERP Central Component - Remote Code Execution via CJDB_FILL_MEMORY_FROM_PPB Function
Oct 24, 2013
EPSS 0.02
CVE-2013-5751
SAP NetWeaver 7.x - Path Traversal
Sep 16, 2013
EPSS 0.02
CVE-2013-5723
SAP NetWeaver 7.30 - SQL Injection via ABAD0_DELETE_DERIVATION_TABLE
Sep 12, 2013
EPSS 0.02
CVE-2013-3319
SAP Netweaver 7.03 - Info Disclosure
Aug 16, 2013
EPSS 0.20
CVE-2013-3063
SAP BASIS Communication Services <7.30 - Command Injection
May 01, 2013
EPSS 0.01
CVE-2013-3062
SAP Production Planning and Control - Auth Bypass
May 01, 2013
EPSS 0.02
CVE-2013-3061
SAP ERP Central Component and Healthcare Industry Solution - Authenticated Transaction Restriction Bypass
May 01, 2013
EPSS 0.02
CVE-2012-4341
SAP NetWeaver ABAP 7.x - Remote Code Execution via Crafted Package to TCP Port 3900
Aug 15, 2012
EPSS 0.09
CVE-2012-2612
SAP NetWeaver 7.0 EHP1 and EHP2 - Denial of Service via Crafted SAP Diag Packet
May 15, 2012
EPSS 0.03
CVE-2012-2611
SAP NetWeaver 7.0 EHP1 and EHP2 - Remote Code Execution via DiagTraceR3Info Function
May 15, 2012
EPSS 0.42
CVE-2012-2514
SAP NetWeaver 7.0 EHP1 and EHP2 - Denial of Service via Crafted SAP Diag Packet
May 15, 2012
EPSS 0.03
CVE-2012-2513
SAP NetWeaver 7.0 EHP1 and EHP2 - Denial of Service via Crafted SAP Diag Packet
May 15, 2012
EPSS 0.03
CVE-2012-2512
SAP NetWeaver 7.0 EHP1 and EHP2 - Denial of Service via Crafted SAP Diag Packet
May 15, 2012
EPSS 0.03
CVE-2012-2511
SAP NetWeaver 7.0 EHP1 and EHP2 - Denial of Service via Crafted SAP Diag Packet
May 15, 2012
EPSS 0.04
CVE-2012-1292
SAP NetWeaver 7.0 - Info Disclosure
Feb 23, 2012
EPSS 0.01
CVE-2012-1291
SAP NetWeaver 7.0 - Info Disclosure
Feb 23, 2012
EPSS 0.01