SAP : Security Vulnerabilities, CVEs, Published In October 2013 (Code Execution)
Unspecified vulnerability in the Statutory Reporting for Insurance (FS_SR) component in the Financial Services module for SAP ERP Central Component (ECC) allows attackers to execute arbitrary code via unspecified vectors, related to a "code injection vulnerability."
Max CVSS
7.5
EPSS Score
0.26%
Published
2013-10-26
Updated
2013-10-28
Multiple unspecified vulnerabilities in the CJDB_FILL_MEMORY_FROM_PPB function in the Project System (PS-IS) module for SAP ERP Central Component (ECC) allow remote attackers to execute arbitrary code via a (1) RFC or (2) SOAP-RFC request.
Max CVSS
6.0
EPSS Score
0.53%
Published
2013-10-24
Updated
2013-10-25
2 vulnerabilities found