VYPR

SAP_ABA

by SAP

CVEs (2)

  • CVE-2018-2481HigNov 13, 2018
    risk 0.47cvss 7.2epss 0.01

    In some SAP standard roles, in SAP_ABA versions, 7.00 to 7.02, 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50, 75C to 75D, a transaction code reserved for customer is used. By implementing such transaction code a malicious user may execute unauthorized transaction functionality.

  • CVE-2023-29109MedApr 11, 2023
    risk 0.29cvss 4.4epss 0.00

    The SAP Application Interface Framework (Message Dashboard) - versions AIF 703, AIFX 702, S4CORE 101, SAP_BASIS 755, 756, SAP_ABA 75C, 75D, 75E, application allows an Excel formula injection. An authorized attacker can inject arbitrary Excel formulas into fields like the Tooltip…