VYPR

Business Client

by SAP

CVEs (4)

  • CVE-2018-2398HigMar 14, 2018
    risk 0.49cvss 7.5epss 0.01

    Under certain conditions SAP Business Client 6.5 allows an attacker to access information which would otherwise be restricted.

  • CVE-2021-38150Sep 14, 2021
    risk 0.00cvss epss 0.01

    When an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will allow him to read extremely sensitive data, such as credentials. This would allow the attacker…

  • CVE-2020-6244May 12, 2020
    risk 0.00cvss epss 0.00

    SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories that can be executed by the application, due to uncontrolled search path element. An attacker could thereby control…

  • CVE-2020-6228Apr 14, 2020
    risk 0.00cvss epss 0.00

    SAP Business Client, versions 6.5, 7.0, does not perform necessary integrity checks which could be exploited by an attacker under certain conditions to modify the installer.