VYPR

Vendor CVEs

SAP

All CVEs

1,818 total · sorted by risk
  • CVE-2016-6857MedDec 31, 2016
    risk 0.35cvss 5.4epss 0.01

    Cross-site scripting (XSS) vulnerability in the Create Catalogue feature in Hybris Management Console (HMC) in SAP Hybris before 5.2.0.13, 5.3.x before 5.3.0.11, 5.4.x before 5.4.0.11, 5.5.0.x before 5.5.0.10, 5.5.1.x before 5.5.1.11, 5.6.x before 5.6.0.11, and 5.7.x before…

  • CVE-2016-6146MedSep 27, 2016
    risk 0.35cvss 5.3epss 0.02

    The NameServer in SAP TREX 7.10 Revision 63 allows remote attackers to obtain sensitive TNS information via an unspecified query, aka SAP Security Note 2234226.

  • CVE-2016-6145MedAug 5, 2016
    risk 0.35cvss 5.3epss 0.01

    The SQL interface in SAP HANA DB 1.00.091.00.1418659308 provides different error messages for failed login attempts depending on whether the username exists and is locked when the detailed_error_on_connect option is not supported or is configured as "False," which allows remote…

  • CVE-2016-3973MedApr 7, 2016
    risk 0.35cvss 5.3epss 0.02

    The chat feature in the Real-Time Collaboration (RTC) services 7.3 and 7.4 in SAP NetWeaver Java AS 7.1 through 7.5 allows remote attackers to obtain sensitive user information by visiting webdynpro/resources/sap.com/tc~rtc~coll.appl.rtc~wd_chat/Chat#, pressing "Add users", and…

  • CVE-2025-42919MedNov 11, 2025
    risk 0.34cvss 5.3epss 0.00

    Due to an Information Disclosure vulnerability in SAP NetWeaver Application Server Java, internal metadata files could be accessed via manipulated URLs. An unauthenticated attacker could exploit this vulnerability by inserting arbitrary path components in the request, allowing…

  • CVE-2025-42897MedNov 11, 2025
    risk 0.34cvss 5.3epss 0.00

    Due to information disclosure vulnerability in anonymous API provided by SAP Business One (SLD), an attacker with normal user access could gain access to unauthorized information. As a result, it has a low impact on the confidentiality of the application but no impact on the…

  • CVE-2025-42906MedOct 14, 2025
    risk 0.34cvss 5.3epss 0.00

    SAP Commerce Cloud contains a path traversal vulnerability that may allow users to access web applications such as the Administration Console from addresses where the Administration Console is not explicitly deployed. This could potentially bypass configured access restrictions,…

  • CVE-2025-42902MedOct 14, 2025
    risk 0.34cvss 5.3epss 0.00

    Due to the memory corruption vulnerability in SAP NetWeaver AS ABAP and ABAP Platform, an unauthenticated attacker can send a corrupted SAP Logon Ticket or SAP Assertion Ticket to the SAP application server. This leads to a dereference of NULL which makes the work process crash.…

  • CVE-2025-42998MedJun 10, 2025
    risk 0.34cvss 5.3epss 0.00

    The security settings in the SAP Business One Integration Framework are not adequately checked, allowing attackers to bypass the 403 Forbidden error and access restricted pages. This leads to low impact on confidentiality of the application, there is no impact on integrity and…

  • CVE-2025-26657MedApr 8, 2025
    risk 0.34cvss 5.3epss 0.00

    SAP KMC WPC allows an unauthenticated attacker to remotely retrieve usernames by a simple parameter query which could expose sensitive information causing low impact on confidentiality of the application. This has no effect on integrity and availability.

  • CVE-2025-23194MedMar 11, 2025
    risk 0.34cvss 5.3epss 0.00

    SAP NetWeaver Enterprise Portal OBN does not perform proper authentication check for a particular configuration setting. As result, a non-authenticated user can set it to an undesired value causing low impact on integrity. There is no impact on confidentiality or availability of…

  • CVE-2024-47592MedNov 12, 2024
    risk 0.34cvss 5.3epss 0.00

    SAP NetWeaver AS Java allows an unauthenticated attacker to brute force the login functionality in order to identify the legitimate user IDs. This has an impact on confidentiality but not on integrity or availability.

  • CVE-2024-47586MedNov 12, 2024
    risk 0.34cvss 5.3epss 0.04

    SAP NetWeaver Application Server for ABAP and ABAP Platform allows an unauthenticated attacker to send a maliciously crafted http request which could cause a null pointer dereference in the kernel. This dereference will result in the system crashing and rebooting, causing the…

  • CVE-2026-34262MedApr 14, 2026
    risk 0.33cvss 5.0epss 0.00

    Information Disclosure Vulnerability in SAP HANA Cockpit and HANA Database Explorer

  • CVE-2026-27688MedMar 10, 2026
    risk 0.33cvss 5.0epss 0.00

    Due to a missing authorization check in SAP NetWeaver Application Server for ABAP, an authenticated attacker with user privileges could read Database Analyzer Log Files via a specific RFC function module. The attacker with the necessary privileges to execute this function module…

  • CVE-2026-0495MedJan 13, 2026
    risk 0.33cvss 5.1epss 0.00

    SAP Fiori App Intercompany Balance Reconciliation allows an attacker with high privileges to send uploaded files to arbitrary emails which could enable effective phishing campaigns. This has low impact on confidentiality, integrity and availability of the application.

  • CVE-2024-37178MedJun 11, 2024
    risk 0.33cvss 5.0epss 0.00

    SAP Financial Consolidation does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. These endpoints are exposed over the network. The vulnerability can exploit resources beyond the vulnerable component. On successful…

  • CVE-2026-27673MedApr 14, 2026
    risk 0.32cvss 4.9epss 0.00

    Due to a missing authorization check, SAP S/4HANA (Private Cloud and On-Premise) allows an authenticated user to delete files on the operating system and gain unauthorized control over file operations which could leads to no impact on Confidentiality, Low impact on Integrity and…

  • CVE-2025-42949MedAug 12, 2025
    risk 0.32cvss 4.9epss 0.00

    Due to a missing authorization check in the ABAP Platform, an authenticated user with elevated privileges could bypass authorization restrictions for common transactions by leveraging the SQL Console. This could enable an attacker to access and read the contents of database…

  • CVE-2025-42961MedJul 8, 2025
    risk 0.32cvss 4.9epss 0.00

    Due to a missing authorization check in SAP NetWeaver Application server for ABAP, an authenticated user with high privileges could exploit the insufficient validation of user permissions to access sensitive database tables. By leveraging overly permissive access configurations,…

  • CVE-2025-0071MedMar 11, 2025
    risk 0.32cvss 4.9epss 0.00

    SAP Web Dispatcher and Internet Communication Manager allow an attacker with administrative privileges to enable debugging trace mode with a specific parameter value. This exposes unencrypted passwords in the logs, causing a high impact on the confidentiality of the application.…

  • CVE-2016-10310MedApr 10, 2017
    risk 0.32cvss 4.9epss 0.02

    Buffer overflow in the MobiLink Synchronization Server component in SAP SQL Anywhere 17 and possibly earlier allows remote authenticated users to cause a denial of service (resource consumption and process crash) by sending a crafted packet several times, aka SAP Security Note…

  • CVE-2026-44757MedJun 9, 2026
    risk 0.31cvss 4.7epss 0.00

    SAP Wily Introscope Enterprise Manager allows an unauthenticated attacker to craft a specially crafted URL. Under certain conditions, when accessed by a victim, the injected script could execute in the user�s browser within the context of the application. This issue has a low…

  • CVE-2026-34258MedMay 12, 2026
    risk 0.31cvss 4.7epss 0.00

    SAPUI5 (Search UI) allows an unauthenticated attacker to manipulate specific URL parameters on the Search UI to include malicious content. Successful exploitation may mislead victim users into clicking and accessing attacker-controlled pages rendered by the application. This…

  • CVE-2026-27682MedMay 12, 2026
    risk 0.31cvss 4.7epss 0.00

    Due to a reflected cross-site scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP (Applications based on Business Server Pages), an unauthenticated attacker could craft a URL that exploits an unprotected URL parameter to embed a malicious script. If a victim…

  • CVE-2025-26653MedApr 8, 2025
    risk 0.31cvss 4.7epss 0.00

    SAP NetWeaver Application Server ABAP does not sufficiently encode user-controlled inputs, leading to Stored Cross-Site Scripting (XSS) vulnerability. This enables an attacker, without requiring any privileges, to inject malicious JavaScript into a website. When a user visits…

  • CVE-2025-0062MedMar 11, 2025
    risk 0.31cvss 4.7epss 0.00

    SAP BusinessObjects Business Intelligence Platform allows an attacker to inject JavaScript code in Web Intelligence reports. This code is then executed in the victim's browser each time the vulnerable page is visited by the victim. On successful exploitation, an attacker could…

  • CVE-2025-0057MedJan 14, 2025
    risk 0.31cvss 4.8epss 0.00

    SAP NetWeaver AS JAVA (User Admin Application) is vulnerable to stored cross site scripting vulnerability. An attacker posing as an admin can upload a photo with malicious JS content. When a victim visits the vulnerable component, the attacker can read and modify information…

  • CVE-2024-47588MedNov 12, 2024
    risk 0.31cvss 4.7epss 0.00

    In SAP NetWeaver Java (Software Update Manager 1.1), under certain conditions when a software upgrade encounters errors, credentials are written in plaintext to a log file. An attacker with local access to the server, authenticated as a non-administrative user, can acquire the…

  • CVE-2024-45280MedSep 10, 2024
    risk 0.31cvss 4.8epss 0.00

    Due to insufficient encoding of user-controlled inputs, SAP NetWeaver AS Java allows malicious scripts to be executed in the login application. This has a limited impact on confidentiality and integrity of the application. There is no impact on availability.

  • CVE-2024-44120MedSep 10, 2024
    risk 0.31cvss 4.7epss 0.00

    SAP NetWeaver Enterprise Portal is vulnerable to reflected cross site scripting due to insufficient encoding of user-controlled input. An unauthenticated attacker could craft a malicious URL and trick a user to click it. If the victim clicks on this crafted URL before it times…

  • CVE-2024-30215MedApr 9, 2024
    risk 0.31cvss 4.8epss 0.00

    The Resource Settings page allows a high privilege attacker to load exploitable payload to be stored and reflected whenever a User visits the page. In a successful attack, some information could be obtained and/or modified. However, the attacker does not have control over what…

  • CVE-2018-2415MedMay 9, 2018
    risk 0.31cvss 4.7epss 0.01

    SAP NetWeaver Application Server Java Web Container and HTTP Service (Engine API, from 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40, 7.50) do not sufficiently encode user controlled inputs, resulting in a content spoofing vulnerability…

  • CVE-2017-16678MedDec 12, 2017
    risk 0.31cvss 4.7epss 0.01

    Server Side Request Forgery (SSRF) vulnerability in SAP NetWeaver Knowledge Management Configuration Service, EPBC and EPBC2 from 7.00 to 7.02; KMC-BC 7.30, 7.31, 7.40 and 7.50, that allows an attacker to manipulate the vulnerable application to send crafted requests on behalf…

  • CVE-2017-6061MedMar 16, 2017
    risk 0.31cvss 4.7epss 0.02

    Cross-site scripting (XSS) vulnerability in the help component of SAP BusinessObjects Financial Consolidation 10.0.0.1933 allows remote attackers to inject arbitrary web script or HTML via a GET request. /finance/help/en/frameset.htm is the URI for this component. The vendor…

  • CVE-2016-3685MedDec 14, 2016
    risk 0.31cvss 4.7epss 0.00

    SAP Download Manager 2.1.142 and earlier generates an encryption key from a small key space on Windows and Mac systems, which allows context-dependent attackers to obtain sensitive configuration information by leveraging knowledge of a hardcoded key in the program code and a…

  • CVE-2016-3684MedDec 14, 2016
    risk 0.31cvss 4.7epss 0.00

    SAP Download Manager 2.1.142 and earlier uses a hardcoded encryption key to protect stored data, which allows context-dependent attackers to obtain sensitive configuration information by leveraging knowledge of this key, aka SAP Security Note 2282338.

  • CVE-2025-31328MedApr 22, 2025
    risk 0.30cvss 4.6epss 0.00

    SAP Learning Solution is vulnerable to Cross-Site Request Forgery (CSRF), allowing an attacker to trick authenticated user into sending unintended requests to the server. GET-based OData function is named in a way that it violates the expected behaviour. This issue could impact…

  • CVE-2025-42943MedAug 12, 2025
    risk 0.29cvss 4.5epss 0.00

    SAP GUI for Windows may allow the leak of NTML hashes when specific ABAP frontend services are called with UNC paths. For a successful attack, the attacker needs developer authorization in a specific Application Server ABAP to make changes in the code, and the victim needs to…

  • CVE-2025-26662MedMay 13, 2025
    risk 0.29cvss 4.4epss 0.00

    The Data Services Management Console does not sufficiently encode user-controlled inputs, allowing an attacker to inject malicious script. When a targeted victim, who is already logged in, clicks on the compromised link, the injected script gets executed within the scope of…

  • CVE-2025-30017MedApr 8, 2025
    risk 0.29cvss 4.4epss 0.00

    Due to a missing authorization check, an authenticated attacker could upload a file as a template for solution documentation in SAP Solution Manager 7.1. After successful exploitation, an attacker can cause limited impact on the integrity and availability of the application.

  • CVE-2018-2440MedJul 10, 2018
    risk 0.29cvss 4.4epss 0.00

    Under certain circumstances SAP Dynamic Authorization Management (DAM) by NextLabs (Java Policy Controller versions 7.7 and 8.5) exposes sensitive information in the application logs.

  • CVE-2026-44755MedJun 9, 2026
    risk 0.28cvss 4.3epss 0.00

    SAP Business Objects Business Intelligence Platform does not sufficiently validate email sending parameters supplied by authenticated users, resulting in an email spoofing vulnerability.This vulnerability has a low impact on integrity and does not affect the confidentiality and…

  • CVE-2026-44750MedJun 9, 2026
    risk 0.28cvss 4.3epss 0.00

    SAP MDG (Review Match Groups Application) does not perform the necessary authorization checks for authenticated users. This could allow a low-privileged user to perform actions that would otherwise be restricted, resulting in escalation of privileges. This has a low impact on…

  • CVE-2026-44749MedMay 26, 2026
    risk 0.28cvss 4.3epss 0.00

    The SAP Gateway allows attackers to inject content into error messages, potentially leading to disclosure of request artefacts (e.g., regex patterns) and revealing underlying URI parsing logic. Leading to low impact on confidentiality. Integrity and availability are unaffected.

  • CVE-2026-40136MedMay 12, 2026
    risk 0.28cvss 4.3epss 0.00

    SAP Financial Consolidation allows an authenticated attacker to disconnect other users by terminating their sessions temporarily preventing access. However, the application itself cannot be compromised resulting in a low impact on availability. There is no impact on…

  • CVE-2026-40134MedMay 12, 2026
    risk 0.28cvss 4.3epss 0.00

    Due to insufficient authorization checks in the SAP Incentive and Commission Management application, authenticated users could invoke a remote-enabled function module to perform table update operations. This vulnerability has a low impact on integrity with no impact on…

  • CVE-2026-40129MedMay 12, 2026
    risk 0.28cvss 4.3epss 0.00

    Due to a Code Injection vulnerability in SAP Application Server ABAP for SAP NetWeaver and ABAP Platform, an authenticated attacker could send specially crafted inputs to the application. If processed by the application, this input could be delivered to users subscribed to the…

  • CVE-2026-27676MedApr 14, 2026
    risk 0.28cvss 4.3epss 0.00

    Due to missing authorization checks in the SAP S/4HANA OData Service (Manage Technical Object Structures), an attacker could update and delete child entities via exposed OData services without proper authorization. This vulnerability results in a low impact on integrity, while…

  • CVE-2026-27672MedApr 14, 2026
    risk 0.28cvss 4.3epss 0.00

    The Material Master application does not enforce authorization checks for authenticated users when executing reports, resulting in the disclosure of sensitive information. This vulnerability has a low impact on confidentiality and does not affect integrity and availability of…

Page 8 of 37