VYPR

Sapcar

by SAP

CVEs (8)

  • CVE-2022-26100CriMar 10, 2022
    risk 0.64cvss 9.8epss 0.01

    SAPCAR - version 7.22, does not contain sufficient input validation on the SAPCAR archive. As a result, the SAPCAR process may crash, and the attacker may obtain privileged access to the system.

  • CVE-2017-8852HigMay 10, 2017
    risk 0.54cvss 7.8epss 0.03

    SAP SAPCAR 721.510 has a Heap Based Buffer Overflow Vulnerability. It could be exploited with a crafted CAR archive file received from an untrusted remote source. The problem is that the length of data written is an arbitrary number found within the file. The vendor response is…

  • CVE-2025-43001MedJul 8, 2025
    risk 0.45cvss 6.9epss 0.00

    SAPCAR allows an attacker logged in with high privileges to override the permissions of the current and parent directories of the user or process extracting the archive, leading to privilege escalation. On successful exploitation, an attacker could modify the critical files by…

  • CVE-2025-42992MedJul 8, 2025
    risk 0.45cvss 6.9epss 0.00

    SAPCAR allows an attacker logged in with high privileges to create a malicious SAR archive in SAPCAR. This could enable the attacker to exploit critical files and directory permissions without breaking signature validation, resulting in potential privilege escalation. This has…

  • CVE-2016-5847MedAug 13, 2016
    risk 0.41cvss 5.8epss 0.01

    SAP SAPCAR allows local users to change the permissions of arbitrary files and consequently gain privileges via a hard link attack on files extracted from an archive, possibly related to SAP Security Note 2327384.

  • CVE-2016-5845MedAug 13, 2016
    risk 0.39cvss 5.5epss 0.03

    SAP SAPCAR does not check the return value of file operations when extracting files, which allows remote attackers to cause a denial of service (program crash) via an invalid file name in an archive file, aka SAP Security Note 2312905.

  • CVE-2025-42970MedJul 8, 2025
    risk 0.38cvss 5.8epss 0.00

    SAPCAR improperly sanitizes the file paths while extracting SAPCAR archives. Due to this, an attacker could craft a malicious SAPCAR archive containing directory traversal sequences. When a high privileged victim extracts this malicious archive, it is then processed by SAPCAR on…

  • CVE-2025-42971MedJul 8, 2025
    risk 0.26cvss 4.0epss 0.00

    A memory corruption vulnerability exists in SAPCAR allowing an attacker to craft malicious SAPCAR archives. When a high privileged victim extracts this malicious archive, it gets processed by SAPCAR on their system, resulting in out-of-bounds memory read and write. This could…