CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

SAP : Security Vulnerabilities

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2018-11415 79 XSS 2018-05-24 2018-06-26
4.3
None Remote Medium Not required None Partial None
SAP Internet Transaction Server (ITS) 6200.X.X has Reflected Cross Site Scripting (XSS) via certain wgate URIs. NOTE: the vendor has reportedly indicated that there will not be any further releases of this product.
2 CVE-2018-2423 399 2018-05-09 2018-06-13
5.0
None Remote Low Not required None None Partial
SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, HTTP and RFC listener allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.
3 CVE-2018-2422 399 2018-05-09 2018-06-13
5.0
None Remote Low Not required None None Partial
SAP Internet Graphics Server (IGS) Portwatcher, 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.
4 CVE-2018-2421 399 2018-05-09 2018-06-13
5.0
None Remote Low Not required None None Partial
SAP Internet Graphics Server (IGS) Portwatcher, 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.
5 CVE-2018-2420 434 2018-05-09 2018-06-13
7.5
None Remote Low Not required Partial Partial Partial
SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to upload any file (including script files) without proper file format validation.
6 CVE-2018-2419 264 2018-05-09 2018-06-14
5.5
None Remote Low Single system Partial Partial None
SAP Enterprise Financial Services (SAPSCORE 1.11, 1.12; S4CORE 1.01, 1.02; EA-FINSERV 6.04, 6.05, 6.06, 6.16, 6.17, 6.18, 8.0) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
7 CVE-2018-2417 200 +Info 2018-05-09 2018-06-13
5.0
None Remote Low Not required Partial None None
Under certain conditions, the SAP Identity Management 8.0 (pass of type ToASCII) allows an attacker to access information which would otherwise be restricted.
8 CVE-2018-2416 20 2018-05-09 2018-06-13
4.0
None Remote Low Single system None None Partial
SAP Identity Management 8.0 does not sufficiently validate an XML document accepted from an untrusted source.
9 CVE-2018-2415 172 2018-05-09 2018-06-14
4.3
None Remote Medium Not required None Partial None
SAP NetWeaver Application Server Java Web Container and HTTP Service (Engine API, from 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40, 7.50) do not sufficiently encode user controlled inputs, resulting in a content spoofing vulnerability when error pages are displayed.
10 CVE-2018-2413 264 2018-04-10 2018-05-14
6.5
None Remote Low Single system Partial Partial Partial
SAP Disclosure Management 10.1 does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
11 CVE-2018-2412 264 2018-04-10 2018-05-14
6.5
None Remote Low Single system Partial Partial Partial
SAP Disclosure Management 10.1 does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
12 CVE-2018-2410 79 XSS 2018-04-10 2018-05-16
3.5
None Remote Medium Single system None Partial None
SAP Business One, 9.2, 9.3, browser access does not sufficiently encode user controlled inputs, which results in a Cross-Site Scripting (XSS) vulnerability.
13 CVE-2018-2409 384 2018-04-10 2018-05-22
6.5
None Remote Low Single system Partial Partial Partial
Improper session management when using SAP Cloud Platform 2.0 (Connectivity Service and Cloud Connector). Under certain conditions, data of some other user may be shown or modified when using an application built on top of SAP Cloud Platform.
14 CVE-2018-2408 384 2018-04-10 2018-05-22
7.5
None Remote Low Not required Partial Partial Partial
Improper Session Management in SAP Business Objects, 4.0, from 4.10, from 4.20, 4.30, CMC/BI Launchpad/Fiorified BI Launchpad. In case of password change for a user, all other active sessions created using older password continues to be active.
15 CVE-2018-2406 428 Dir. Trav. 2018-04-10 2018-05-22
4.6
None Local Low Not required Partial Partial Partial
Unquoted windows search path (directory/path traversal) vulnerability in Crystal Reports Server, OEM Edition (CRSE), 4.0, 4.10, 4.20, 4.30, startup path.
16 CVE-2018-2405 79 XSS 2018-04-10 2018-05-16
3.5
None Remote Medium Single system None Partial None
SAP Solution Manager, 7.10, 7.20, Incident Management Work Center allows an attacker to upload a malicious script as an attachment and this could lead to possible Cross-Site Scripting.
17 CVE-2018-2404 434 2018-04-10 2018-05-14
7.5
None Remote Low Not required Partial Partial Partial
SAP Disclosure Management 10.1 allows an attacker to upload any file without proper file format validation.
18 CVE-2018-2403 200 +Info 2018-04-10 2018-05-17
4.0
None Remote Low Single system Partial None None
Under certain conditions, SAP Disclosure Management 10.1 allows an attacker to access information which would otherwise be restricted. It is possible for an authorized user to get SAP Disclosure Management to point a specific chapter type to a chapter the user has not been given access to.
19 CVE-2018-2402 255 2018-03-14 2018-04-13
3.5
None Remote Medium Single system Partial None None
In systems using the optional capture & replay functionality of SAP HANA, 1.00 and 2.00, (see SAP Note 2362820 for more information about capture & replay), user credentials may be stored in clear text in the indexserver trace files of the control system. An attacker with the required authorizations on the control system may be able to access the user credentials and gain unauthorized access to data in the captured or target system.
20 CVE-2018-2399 79 XSS 2018-03-14 2018-04-06
4.3
None Remote Medium Not required None Partial None
Cross-Site Scripting in Process Monitoring Infrastructure, from 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, due to inefficient encoding of user controlled inputs.
21 CVE-2018-2398 200 +Info 2018-03-14 2018-04-10
5.0
None Remote Low Not required Partial None None
Under certain conditions SAP Business Client 6.5 allows an attacker to access information which would otherwise be restricted.
22 CVE-2018-2397 79 XSS 2018-03-14 2018-04-10
3.5
None Remote Medium Single system None Partial None
In SAP Business Objects Business Intelligence Platform, 4.00, 4.10, 4.20, 4.30, the Central Management Console (CMC) does not sufficiently encode user controlled inputs which results in Cross-Site Scripting.
23 CVE-2018-2396 264 2018-02-14 2018-02-27
4.0
None Remote Low Single system None None Partial
Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, using IGS Interpreter service.
24 CVE-2018-2395 20 2018-02-14 2018-02-27
6.5
None Remote Low Single system Partial Partial Partial
Under certain conditions a malicious user may retrieve information on SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, overwrite existing image or corrupt other type of files.
25 CVE-2018-2394 264 2018-02-14 2018-02-27
5.0
None Remote Low Not required None None Partial
Under certain conditions an unauthenticated malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, services and/or system files.
26 CVE-2018-2393 611 2018-02-14 2018-03-01
5.0
None Remote Low Not required None None Partial
Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity appropriately causing the SAP Internet Graphics Server (IGS) to become unavailable.
27 CVE-2018-2392 611 2018-02-14 2018-03-01
5.0
None Remote Low Not required None None Partial
Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity appropriately causing the SAP Internet Graphics Server (IGS) to become unavailable.
28 CVE-2018-2391 264 2018-02-14 2018-02-27
4.0
None Remote Low Single system None None Partial
Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, via IGS portwatcher service.
29 CVE-2018-2390 264 2018-02-14 2018-02-27
4.0
None Remote Low Single system None None Partial
Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, via IGS Chart service.
30 CVE-2018-2389 20 2018-02-14 2018-02-27
4.0
None Remote Low Single system None Partial None
Under certain conditions a malicious user can inject log files of SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, hiding important information in the log file.
31 CVE-2018-2388 79 XSS 2018-02-14 2018-02-27
4.3
None Remote Medium Not required None Partial None
Stored cross-site scripting vulnerability in SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53.
32 CVE-2018-2387 200 +Info 2018-02-14 2018-02-27
4.0
None Remote Low Single system Partial None None
A vulnerability in the SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, could allow a malicious user to obtain information on ports, which is not available to the user otherwise.
33 CVE-2018-2386 119 Overflow 2018-02-14 2018-02-27
4.0
None Remote Low Single system None None Partial
Under certain conditions a malicious user provoking an out of bounds buffer overflow can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53.
34 CVE-2018-2385 369 2018-02-14 2018-02-27
4.0
None Remote Low Single system None None Partial
Under certain conditions a malicious user provoking a divide by zero crash can prevent legitimate users from accessing the SAP Internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, and its services.
35 CVE-2018-2384 476 2018-02-14 2018-02-27
4.0
None Remote Low Single system None None Partial
Under certain conditions a malicious user provoking a Null Pointer dereference can prevent legitimate users from accessing the SAP Internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, and its services.
36 CVE-2018-2383 79 XSS 2018-02-14 2018-02-27
4.3
None Remote Medium Not required None Partial None
Reflected cross-site scripting vulnerability in SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53.
37 CVE-2018-2382 200 +Info 2018-02-14 2018-02-27
4.0
None Remote Low Single system Partial None None
A vulnerability in the SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, could allow a malicious user to store graphics in a controlled area and as such gain information from system area, which is not available to the user otherwise.
38 CVE-2018-2381 285 2018-02-14 2018-03-15
6.5
None Remote Low Single system Partial Partial Partial
SAP ERP Financials Information System (SAP_APPL 6.00, 6.02, 6.03, 6.04, 6.05, 6.06, 6.16; SAP_FIN 6.17, 6.18, 7.00, 7.20, 7.30 S4CORE 1.00, 1.01, 1.02) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
39 CVE-2018-2380 22 Dir. Trav. 2018-03-01 2018-03-23
6.5
None Remote Low Single system Partial Partial Partial
SAP CRM, 7.01, 7.02,7.30, 7.31, 7.33, 7.54, allows an attacker to exploit insufficient validation of path information provided by users, thus characters representing "traverse to parent directory" are passed through to the file APIs.
40 CVE-2018-2379 284 2018-02-14 2018-03-01
4.0
None Remote Low Single system Partial None None
In SAP HANA Extended Application Services, 1.0, an unauthenticated user could test if a given username is valid by evaluating error messages of a specific endpoint.
41 CVE-2018-2378 284 2018-02-14 2018-03-01
4.0
None Remote Low Single system Partial None None
In SAP HANA Extended Application Services, 1.0, unauthorized users can read statistical data about deployed applications including resource consumption.
42 CVE-2018-2377 284 2018-02-14 2018-03-01
4.0
None Remote Low Single system Partial None None
In SAP HANA Extended Application Services, 1.0, some general server statistics and status information could be retrieved by unauthorized users.
43 CVE-2018-2376 284 2018-02-14 2018-03-01
5.5
None Remote Low Single system Partial Partial None
In SAP HANA Extended Application Services, 1.0, a controller user who has SpaceAuditor authorization in a specific space could retrieve application environments within that space.
44 CVE-2018-2375 284 2018-02-14 2018-03-01
5.5
None Remote Low Single system Partial Partial None
In SAP HANA Extended Application Services, 1.0, a controller user who has SpaceAuditor authorization in a specific space could retrieve application environments within that space.
45 CVE-2018-2374 284 2018-02-14 2018-03-01
4.0
None Remote Low Single system Partial None None
In SAP HANA Extended Application Services, 1.0, a controller user who has SpaceAuditor authorization in a specific space could retrieve sensitive application data like service bindings within that space.
46 CVE-2018-2373 200 +Info 2018-02-14 2018-03-15
5.0
None Remote Low Not required Partial None None
Under certain circumstances, a specific endpoint of the Controller's API could be misused by unauthenticated users to execute SQL statements that deliver information about system configuration in SAP HANA Extended Application Services, 1.0.
47 CVE-2018-2372 200 +Info 2018-02-14 2018-03-15
4.0
None Remote Low Single system Partial None None
A plain keystore password is written to a system log file in SAP HANA Extended Application Services, 1.0, which could endanger confidentiality of SSL communication.
48 CVE-2018-2371 79 XSS 2018-02-14 2018-03-15
4.3
None Remote Medium Not required None Partial None
The SAML 2.0 service provider of SAP Netweaver AS Java Web Application, 7.50, does not sufficiently encode user controlled inputs, which results in Cross-Site Scripting (XSS) vulnerability.
49 CVE-2018-2370 918 2018-02-14 2018-03-15
5.0
None Remote Low Not required Partial None None
Server Side Request Forgery (SSRF) vulnerability in SAP Central Management Console, BI Launchpad and Fiori BI Launchpad, 4.10, from 4.20, from 4.30, could allow a malicious user to use common techniques to determine which ports are in use on the backend server.
50 CVE-2018-2369 200 +Info 2018-02-14 2018-03-15
5.0
None Remote Low Not required Partial None None
Under certain conditions SAP HANA, 1.00, 2.00, allows an unauthenticated attacker to access information which would otherwise be restricted. An attacker can misuse the authentication function of the SAP HANA server on its SQL interface and disclose 8 bytes of the server process memory. The attacker cannot influence or predict the location of the leaked memory.
Total number of vulnerabilities : 434   Page : 1 (This Page)2 3 4 5 6 7 8 9
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.