CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

SAP : Security Vulnerabilities (CVSS score between 4 and 4.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2022-35227 79 Exec Code XSS 2022-07-12 2022-07-20
4.3
None Remote Medium Not required None Partial None
A vulnerability in SAP NW EP (WPC) - versions 7.30, 7.31, 7.40, 7.50, which does not sufficiently validate user-controlled input, allows a remote attacker to conduct a Cross-Site (XSS) scripting attack. A successful exploit could allow the attacker to execute arbitrary script code which could lead to stealing or modifying of authentication information of the user, such as data relating to his or her current session.
2 CVE-2022-35225 79 XSS 2022-07-12 2022-07-20
4.3
None Remote Medium Not required None Partial None
SAP NetWeaver Enterprise Portal - versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs over the network, resulting in reflected Cross-Site Scripting (XSS) vulnerability, therefore changing the scope of the attack. This leads to limited impact on confidentiality and integrity of data.
3 CVE-2022-35224 79 Exec Code XSS 2022-07-12 2023-01-30
4.3
None Remote Medium Not required None Partial None
SAP Enterprise Portal - versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. This attack can be used to non-permanently deface or modify portal content. The execution of script content by a victim registered on the portal could compromise the confidentiality and integrity of victim?s web browser session.
4 CVE-2022-35172 79 XSS 2022-07-12 2022-07-19
4.3
None Remote Medium Not required None Partial None
SAP NetWeaver Enterprise Portal - versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in reflected Cross-Site Scripting (XSS) vulnerability.
5 CVE-2022-35171 20 2022-07-12 2022-07-19
4.3
None Remote Medium Not required None None Partial
When a user opens manipulated JPEG 2000 (.jp2, jp2k.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application. The file format details along with their CVE relevant information can be found below
6 CVE-2022-35170 79 XSS 2022-07-12 2022-07-20
4.3
None Remote Medium Not required None Partial None
SAP NetWeaver Enterprise Portal does - versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, not sufficiently encode user-controlled inputs over the network, resulting in reflected Cross-Site Scripting (XSS) vulnerability, therefore changing the scope of the attack. This leads to limited impact on confidentiality and integrity of data.
7 CVE-2022-32247 79 XSS 2022-07-12 2022-07-20
4.3
None Remote Medium Not required None Partial None
SAP NetWeaver Enterprise Portal - versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, is susceptible to script execution attack by an unauthenticated attacker due to improper sanitization of the User inputs while interacting on the Network. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality and integrity of the application.
8 CVE-2022-32246 89 Sql 2022-07-12 2022-07-20
4.9
None Remote Medium ??? Partial Partial None
SAP Busines Objects Business Intelligence Platform (Visual Difference Application) - versions 420, 430, allows an authenticated attacker who has access to BI admin console to send crafted queries and extract data from the SQL backend. On successful exploitation, the attacker can cause limited impact on confidentiality and integrity of the application
9 CVE-2022-32243 20 2022-06-14 2022-06-23
4.3
None Remote Medium Not required None None Partial
When a user opens manipulated Scalable Vector Graphics (.svg, svg.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application.
10 CVE-2022-32242 20 2022-06-14 2022-06-23
4.3
None Remote Medium Not required None None Partial
When a user opens manipulated Radiance Picture (.hdr, hdr.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application.
11 CVE-2022-32241 20 2022-06-14 2022-06-23
4.3
None Remote Medium Not required None None Partial
When a user opens manipulated Portable Document Format (.pdf, PDFView.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application.
12 CVE-2022-32240 20 2022-06-14 2022-06-23
4.3
None Remote Medium Not required None None Partial
When a user opens manipulated Jupiter Tesselation (.jt, JTReader.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application.
13 CVE-2022-32239 20 2022-06-14 2022-10-19
4.3
None Remote Medium Not required None None Partial
When a user opens manipulated JPEG 2000 (.jp2, jp2k.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application.
14 CVE-2022-32238 20 2022-06-14 2022-06-22
4.3
None Remote Medium Not required None None Partial
When a user opens manipulated Encapsulated Post Script (.eps, ai.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application.
15 CVE-2022-32237 20 2022-06-14 2022-06-22
4.3
None Remote Medium Not required None None Partial
When a user opens manipulated Computer Graphics Metafile (.cgm, CgmCore.dll) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application.
16 CVE-2022-32236 20 2022-06-14 2022-06-24
4.3
None Remote Medium Not required None None Partial
When a user opens manipulated Windows Bitmap (.bmp, 2d.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application.
17 CVE-2022-32235 20 2022-06-14 2022-06-24
4.3
None Remote Medium Not required None None Partial
When a user opens manipulated AutoCAD (.dwg, TeighaTranslator.exe) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application.
18 CVE-2022-31598 345 2022-07-12 2022-07-16
4.9
None Remote Medium ??? Partial Partial None
Due to insufficient input validation, SAP Business Objects - version 420, allows an authenticated attacker to submit a malicious request through an allowed operation. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality and integrity of the application.
19 CVE-2022-31592 862 2022-07-12 2022-07-16
4.0
None Remote Low ??? Partial None None
The application SAP Enterprise Extension Defense Forces & Public Security - versions 605, 606, 616,617,618, 802, 803, 804, 805, 806, does not perform necessary authorization checks for an authenticated user over the network, resulting in escalation of privileges leading to a limited impact on confidentiality.
20 CVE-2022-31591 428 +Priv 2022-07-12 2022-07-16
4.6
None Local Low Not required Partial Partial Partial
SAP BusinessObjects BW Publisher Service - versions 420, 430, uses a search path that contains an unquoted element. A local attacker can gain elevated privileges by inserting an executable file in the path of the affected service
21 CVE-2022-31589 863 2022-06-14 2022-06-27
4.0
None Remote Low ??? Partial None None
Due to improper authorization check, business users who are using Israeli File from SHAAM program (/ATL/VQ23 transaction), are granted more than needed authorization to perform certain transaction, which may lead to users getting access to data that would otherwise be restricted.
22 CVE-2022-29618 79 Exec Code XSS 2022-06-14 2022-06-24
4.3
None Remote Medium Not required None Partial None
Due to insufficient input validation, SAP NetWeaver Development Infrastructure (Design Time Repository) - versions 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to inject script into the URL and execute code in the user’s browser. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality and integrity of the application.
23 CVE-2022-29617 755 2022-06-06 2022-10-05
4.0
None Remote Low ??? None None Partial
Due to improper error handling an authenticated user can crash CLA assistant instance. This could impact the availability of the application.
24 CVE-2022-29614 269 2022-06-14 2022-10-27
4.6
None Local Low Not required Partial Partial Partial
SAP startservice - of SAP NetWeaver Application Server ABAP, Application Server Java, ABAP Platform and HANA Database - versions KERNEL 7.22, 7.49, 7.53, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC 7.22, 7.22EXT, 7.49, 7.53, SAPHOSTAGENT 7.22, - on Unix systems, s-bit helper program sapuxuserchk, can be abused physically resulting in a privilege escalation of an attacker leading to low impact on confidentiality and integrity, but a profound impact on availability.
25 CVE-2022-29613 20 2022-05-11 2022-05-19
4.0
None Remote Low ??? Partial None None
Due to insufficient input validation, SAP Employee Self Service allows an authenticated attacker with user privileges to alter employee number. On successful exploitation, the attacker can view personal details of other users causing a limited impact on confidentiality of the application.
26 CVE-2022-29612 918 +Info 2022-06-14 2022-10-06
4.0
None Remote Low ??? Partial None None
SAP NetWeaver, ABAP Platform and SAP Host Agent - versions KERNEL 7.22, 7.49, 7.53, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, 8.04, KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC 7.22, 7.22EXT, 7.49, 7.53, 8.04, SAPHOSTAGENT 7.22, allows an authenticated user to misuse a function of sapcontrol webfunctionality(startservice) in Kernel which enables malicious users to retrieve information. On successful exploitation, an attacker can obtain technical information like system number or physical address, which is otherwise restricted, causing a limited impact on the confidentiality of the application.
27 CVE-2022-28770 79 Exec Code XSS 2022-04-12 2022-04-20
4.3
None Remote Medium Not required None Partial None
Due to insufficient input validation, SAPUI5 library(vbm) - versions 750, 753, 754, 755, 75, allows an unauthenticated attacker to inject a script into the URL and execute code. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality and integrity of the application.
28 CVE-2022-28217 918 2022-06-13 2023-01-30
4.0
None Remote Low ??? None None Partial
Some part of SAP NetWeaver (EP Web Page Composer) does not sufficiently validate an XML document accepted from an untrusted source, which allows an adversary to exploit unprotected XML parking at endpoints, and a possibility to conduct SSRF attacks that could compromise system?s Availability by causing system to crash.
29 CVE-2022-28216 79 XSS 2022-04-12 2022-04-20
4.3
None Remote Medium Not required None Partial None
SAP BusinessObjects Business Intelligence Platform (BI Workspace) - version 420, is susceptible to a Cross-Site Scripting attack by an unauthenticated attacker due to improper sanitization of the user inputs on the network. On successful exploitation, an attacker can access certain reports causing a limited impact on confidentiality of the application data.
30 CVE-2022-28215 601 2022-04-12 2022-10-06
4.3
None Remote Medium Not required Partial None None
SAP NetWeaver ABAP Server and ABAP Platform - versions 740, 750, 787, allows an unauthenticated attacker to redirect users to a malicious site due to insufficient URL validation. This could lead to the user being tricked to disclose personal information.
31 CVE-2022-28214 312 2022-05-11 2022-05-19
4.6
None Local Low Not required Partial Partial Partial
During an update of SAP BusinessObjects Enterprise, Central Management Server (CMS) - versions 420, 430, authentication credentials are being exposed in Sysmon event logs. This Information Disclosure could cause a high impact on systems’ Confidentiality, Integrity, and Availability.
32 CVE-2022-27671 201 CSRF 2022-04-12 2022-04-20
4.3
None Remote Medium Not required Partial None None
A CSRF token visible in the URL may possibly lead to information disclosure vulnerability.
33 CVE-2022-27670 99 2022-04-12 2022-04-20
4.0
None Remote Low ??? None None Partial
SAP SQL Anywhere - version 17.0, allows an authenticated attacker to prevent legitimate users from accessing a SQL Anywhere database server by crashing the server with some queries that use indirect identifiers.
34 CVE-2022-27667 200 +Info 2022-04-12 2022-04-20
4.3
None Remote Medium Not required Partial None None
Under certain conditions, SAP BusinessObjects Business Intelligence platform, Client Management Console (CMC) - version 430, allows an attacker to access information which would otherwise be restricted, leading to Information Disclosure.
35 CVE-2022-27658 862 2022-03-28 2022-04-04
4.3
None Remote Medium Not required Partial None None
Under certain conditions, SAP Innovation management - version 2.0, allows an attacker to access information which could lead to information gathering for further exploits and attacks.
36 CVE-2022-27657 22 +Priv Dir. Trav. 2022-04-12 2023-02-01
4.0
None Remote Low ??? Partial None None
A highly privileged remote attacker, can gain unauthorized access to display contents of restricted directories by exploiting insufficient validation of path information in SAP Focused Run (Simple Diagnostics Agent 1.0) - version 1.0.
37 CVE-2022-27656 79 XSS 2022-05-11 2022-05-19
4.3
None Remote Medium Not required None Partial None
The Web administration UI of SAP Web Dispatcher and the Internet Communication Manager (ICM) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
38 CVE-2022-27655 20 2022-04-12 2022-04-20
4.3
None Remote Medium Not required None None Partial
When a user opens a manipulated Universal 3D (.u3d, 3difr.x3d) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application.
39 CVE-2022-27654 20 2022-04-12 2022-04-20
4.3
None Remote Medium Not required None None Partial
When a user opens a manipulated Photoshop Document (.psd, 2d.x3d) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application.
40 CVE-2022-26109 20 2022-04-12 2022-04-19
4.3
None Remote Medium Not required None None Partial
When a user opens a manipulated Portable Document Format (.pdf, PDFView.x3d) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application.
41 CVE-2022-26108 20 2022-04-12 2022-04-19
4.3
None Remote Medium Not required None None Partial
When a user opens a manipulated Picture Exchange (.pcx, 2d.x3d) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application.
42 CVE-2022-26107 20 2022-04-12 2022-04-19
4.3
None Remote Medium Not required None None Partial
When a user opens a manipulated Jupiter Tesselation (.jt, JTReader.x3d) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application.
43 CVE-2022-26106 20 2022-04-12 2022-04-19
4.3
None Remote Medium Not required None None Partial
When a user opens a manipulated Computer Graphics Metafile (.cgm, CgmCore.dll) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application.
44 CVE-2022-26105 79 XSS 2022-04-12 2022-04-19
4.3
None Remote Medium Not required None Partial None
SAP NetWeaver Enterprise Portal - versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, is susceptible to script execution attack by an unauthenticated attacker due to improper sanitization of the user inputs while interacting on the Network. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality and integrity of the application.
45 CVE-2022-26103 2022-03-10 2022-03-18
4.3
None Remote Medium Not required Partial None None
Under certain conditions, SAP NetWeaver (Real Time Messaging Framework) - version 7.50, allows an attacker to access information which could lead to information gathering for further exploits and attacks.
46 CVE-2022-26101 79 XSS 2022-03-10 2022-12-22
4.3
None Remote Medium Not required None Partial None
Fiori launchpad - versions 754, 755, 756, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
47 CVE-2022-24399 79 XSS 2022-03-10 2022-12-22
4.3
None Remote Medium Not required None Partial None
The SAP Focused Run (Real User Monitoring) - versions 200, 300, REST service does not sufficiently sanitize the input name of the file using multipart/form-data, resulting in Cross-Site Scripting (XSS) vulnerability.
48 CVE-2022-24397 79 Exec Code XSS 2022-03-10 2022-03-16
4.3
None Remote Medium Not required None Partial None
SAP NetWeaver Enterprise Portal - versions 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in reflected Cross-Site Scripting (XSS) vulnerability.This reflected cross-site scripting attack can be used to non-permanently deface or modify displayed content of portal Website. The execution of the script content by a victim registered on the portal could compromise the confidentiality and integrity of victim’s web browser.
49 CVE-2022-24395 79 XSS 2022-03-10 2022-03-16
4.3
None Remote Medium Not required None Partial None
SAP NetWeaver Enterprise Portal - versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in reflected Cross-Site Scripting (XSS) vulnerability.
50 CVE-2022-22545 200 +Info 2022-02-09 2022-10-25
4.0
None Remote Low ??? Partial None None
A high privileged user who has access to transaction SM59 can read connection details stored with the destination for http calls in SAP NetWeaver Application Server ABAP and ABAP Platform - versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756.
Total number of vulnerabilities : 378   Page : 1 (This Page)2 3 4 5 6 7 8
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.