CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

SAP : Security Vulnerabilities (CVSS score between 4 and 4.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2019-0380 532 2019-10-08 2019-10-15
4.0
None Remote Low Single system Partial None None
Under certain conditions, SAP Landscape Management enterprise edition, before version 3.0, allows custom secure parameters? default values to be part of the application logs leading to Information Disclosure.
2 CVE-2019-0367 862 2019-10-08 2019-10-10
4.0
None Remote Low Single system None Partial None
SAP NetWeaver Process Integration (B2B Toolkit), before versions 1.0 and 2.0, does not perform necessary authorization checks for an authenticated user, allowing the import of B2B table content that leads to Missing Authorization Check.
3 CVE-2019-0364 20 2019-09-10 2019-09-11
4.0
None Remote Low Single system Partial None None
Attackers may misuse an HTTP/REST endpoint of SAP HANA Extended Application Services (Advanced model), before version 1.0.118, to enumerate open ports.
4 CVE-2019-0361 79 XSS 2019-09-10 2019-09-11
4.3
None Remote Medium Not required None Partial None
SAP Supplier Relationship Management (Master Data Management Catalog - SRM_MDM_CAT, before versions 3.73, 7.31, 7.32) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
5 CVE-2019-0356 200 +Info 2019-09-10 2019-10-10
4.0
None Remote Low Single system Partial None None
Under certain conditions SAP NetWeaver Process Integration Runtime Workbench ? MESSAGING and SAP_XIAF (before versions 7.31, 7.40, 7.50) allows an attacker to access information which would otherwise be restricted.
6 CVE-2019-0348 200 +Info 2019-08-14 2019-08-22
4.0
None Remote Low Single system Partial None None
SAP BusinessObjects Business Intelligence Platform (Web Intelligence), versions 4.1, 4.2, can access database with unencrypted connection, even if the quality of protection should be encrypted.
7 CVE-2019-0346 200 +Info 2019-08-14 2019-08-23
4.0
None Remote Low Single system Partial None None
Unencrypted communication error in SAP Business Objects Business Intelligence Platform (Central Management Console), version 4.2, leads to disclosure of list of user names and roles imported from SAP NetWeaver BI systems, resulting in Information Disclosure.
8 CVE-2019-0341 20 2019-08-14 2019-08-26
4.0
None Remote Low Single system Partial None None
The session cookie used by SAP Enable Now, version 1902, does not have the HttpOnly flag set. If an attacker runs script code in the context of the application, he could get access to the session cookie. The session cookie could then be abused to gain access to the application.
9 CVE-2019-0337 79 Exec Code XSS 2019-08-14 2019-08-26
4.3
None Remote Medium Not required None Partial None
Java Proxy Runtime of SAP NetWeaver Process Integration, versions 7.10, 7.11, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs and allows an attacker to execute malicious scripts in the url thereby resulting in Reflected Cross-Site Scripting (XSS) vulnerability
10 CVE-2019-0335 79 XSS 2019-08-14 2019-08-26
4.3
None Remote Medium Not required None Partial None
Under certain conditions SAP BusinessObjects Business Intelligence Platform (Central Management Console), versions 4.1, 4.2, 4.3, allows an attacker to store a malicious payload within the description field of a user account. The payload is triggered when the mouse cursor is moved over the description field in the list, when generating the little yellow informational pop up box, resulting in Stored Cross Site Scripting Attack.
11 CVE-2019-0334 79 XSS 2019-08-14 2019-08-22
4.9
None Remote Medium Single system Partial Partial None
When creating a module in SAP BusinessObjects Business Intelligence Platform (BI Workspace), versions 4.1, 4.2, 4.3, it is possible to store a malicious script which when executed later could potentially allow a user to escalate privileges via session hijacking. The attacker could also access other sensitive information, leading to Stored Cross Site Scripting.
12 CVE-2019-0333 200 +Info 2019-08-14 2019-08-28
4.0
None Remote Low Single system Partial None None
In some situations, when a client cancels a query in SAP BusinessObjects Business Intelligence Platform (Web Intelligence), versions 4.2, 4.3, the attacker can then query and receive the whole data set instead of just what is part of their authorized security profile, resulting in Information Disclosure.
13 CVE-2019-0332 79 XSS 2019-08-14 2019-08-19
4.3
None Remote Medium Not required None Partial None
SAP BusinessObjects Business Intelligence Platform (Info View), versions 4.1, 4.2, 4.3, allows an attacker to give some payload for keyword in the search and it will be executed while search performs its action, resulting in Cross-Site Scripting (XSS) vulnerability.
14 CVE-2019-0329 79 XSS 2019-07-10 2019-07-14
4.3
None Remote Medium Not required None Partial None
SAP Information Steward, version 4.2, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
15 CVE-2019-0326 79 XSS 2019-07-10 2019-07-17
4.3
None Remote Medium Not required None Partial None
SAP BusinessObjects Business Intelligence Platform (BI Workspace) (Enterprise), versions 4.1, 4.2, 4.3, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
16 CVE-2019-0325 285 2019-07-10 2019-07-18
4.9
None Remote Medium Single system Partial Partial None
SAP ERP HCM (SAP_HRCES) , version 3, does not perform necessary authorization checks for a report that reads payroll data of employees in a certain area. Due to this under certain conditions, the user that once had authorization to payroll data of an employee, which was later revoked, may retain access to the same data.
17 CVE-2019-0321 79 XSS 2019-07-10 2019-07-19
4.3
None Remote Medium Not required None Partial None
ABAP Server and ABAP Platform (SAP Basis), versions, 7.31, 7.4, 7.5, do not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
18 CVE-2019-0314 284 2019-06-12 2019-06-12
4.3
None Remote Medium Not required None None Partial
SAP Work Manager, versions: 6.3, 6.4, 6.5 and SAP Inventory Manager, version 4.3, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.
19 CVE-2019-0311 79 Exec Code XSS 2019-06-12 2019-06-14
4.3
None Remote Medium Not required None Partial None
Automotive Dealer Portal in SAP R/3 Enterprise Application (versions: 600, 602, 603, 604, 605, 606, 616, 617) does not sufficiently encode user-controlled inputs, this makes it possible for an attacker to send unwanted scripts to the browser of the victim using unwanted input and execute malicious code there, resulting in Cross-Site Scripting (XSS) vulnerability.
20 CVE-2019-0306 200 +Info 2019-06-12 2019-06-14
4.0
None Remote Low Single system Partial None None
SAP HANA Extended Application Services (advanced model), version 1, allows authenticated low privileged XS Advanced Platform users such as SpaceAuditors to execute requests to obtain a complete list of SAP HANA user IDs and names.
21 CVE-2019-0305 502 2019-06-12 2019-06-14
4.3
None Remote Medium Not required None Partial None
Java Server Pages (JSPs) provided by the SAP NetWeaver Process Integration (SAP_XIESR and SAP_XITOOL: 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50) do not restrict or incorrectly restrict frame objects or UI layers that belong to another application or domain, resulting in Clickjacking vulnerability. Successful exploitation of this vulnerability leads to unwanted modification of user's data.
22 CVE-2019-0303 79 Exec Code XSS 2019-06-14 2019-06-18
4.3
None Remote Medium Not required None Partial None
SAP BusinessObjects Business Intelligence Platform (Administration Console), versions 4.2, 4.3, module BILogon/appService.jsp is reflecting requested parameter errMsg into response content without sanitation. This could be used by an attacker to build a special url that execute custom JavaScript code when the url is accessed.
23 CVE-2019-0298 79 XSS 2019-05-14 2019-05-16
4.3
None Remote Medium Not required None Partial None
SAP E-Commerce (Business-to-Consumer) application does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. Fixed in the following components SAP-CRMJAV SAP-CRMWEB SAP-SHRWEB SAP-SHRJAV SAP-CRMAPP SAP-SHRAPP, versions 7.30, 7.31, 7.32, 7.33, 7.54.
24 CVE-2019-0293 264 2019-05-14 2019-05-16
4.0
None Remote Low Single system Partial None None
Read of RFC destination does not always perform necessary authorization checks, resulting in escalation of privileges to access information on RFC destinations on managed systems and SAP Solution Manager system (ST-PI, before versions 2008_1_700, 2008_1_710, and 740).
25 CVE-2019-0281 79 XSS 2019-07-10 2019-07-18
4.3
None Remote Medium Not required None Partial None
SAPUI5 and OpenUI5, before versions 1.38.39, 1.44.39, 1.52.25, 1.60.6 and 1.63.0, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
26 CVE-2019-0278 200 +Info 2019-04-10 2019-04-11
4.0
None Remote Low Single system Partial None None
Under certain conditions the Monitoring Servlet of the SAP NetWeaver Process Integration (Messaging System), fixed in versions 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows an attacker to see the names of database tables used by the application, leading to information disclosure.
27 CVE-2019-0238 79 XSS 2019-01-08 2019-01-17
4.3
None Remote Medium Not required None Partial None
SAP Commerce (previously known as SAP Hybris Commerce), before version 6.7, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
28 CVE-2018-11415 79 XSS 2018-05-24 2018-06-26
4.3
None Remote Medium Not required None Partial None
SAP Internet Transaction Server (ITS) 6200.X.X has Reflected Cross Site Scripting (XSS) via certain wgate URIs. NOTE: the vendor has reportedly indicated that there will not be any further releases of this product.
29 CVE-2018-2505 79 XSS 2018-12-11 2019-01-07
4.3
None Remote Medium Not required None Partial None
SAP Commerce does not sufficiently validate user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability in storefronts that are based on the product. Fixed in versions (SAP Hybris Commerce, versions 6.2, 6.3, 6.4, 6.5, 6.6, 6.7).
30 CVE-2018-2504 79 XSS 2018-12-11 2019-01-07
4.3
None Remote Medium Not required None Partial None
SAP NetWeaver AS Java Web Container service does not validate against whitelist the HTTP host header which can result in HTTP Host Header Manipulation or Cross-Site Scripting (XSS) vulnerability. This is fixed in versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50.
31 CVE-2018-2502 79 XSS 2018-12-11 2019-01-07
4.3
None Remote Medium Not required None Partial None
TRACE method is enabled in SAP Business One Service Layer . Attacker can use XST (Cross Site Tracing) attack if frontend applications that are using Service Layer has a XSS vulnerability. This has been fixed in SAP Business One Service Layer (B1_ON_HANA, versions 9.2, 9.3).
32 CVE-2018-2497 20 2018-12-11 2019-01-07
4.0
None Remote Low Single system None Partial None
The security audit log of SAP HANA, versions 1.0 and 2.0, does not log SELECT events if these events are part of a statement with the syntax CREATE TABLE <table_name> AS SELECT.
33 CVE-2018-2479 79 XSS 2018-11-13 2018-11-23
4.3
None Remote Medium Not required None Partial None
SAP BusinessObjects Business Intelligence Platform (BIWorkspace), versions 4.1 and 4.2, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
34 CVE-2018-2474 352 CSRF 2018-10-09 2019-01-04
4.3
None Remote Medium Not required None Partial None
SAP Fiori 1.0 for SAP ERP HCM (Approve Leave Request, version 2) application allows an attacker to trick an authenticated user to send unintended request to the web server. This vulnerability is due to insufficient CSRF protection.
35 CVE-2018-2472 79 XSS 2018-10-09 2018-11-23
4.3
None Remote Medium Not required None Partial None
SAP BusinessObjects Business Intelligence Platform 4.10 and 4.20 (Web Intelligence DHTML client) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
36 CVE-2018-2470 79 XSS 2018-10-09 2018-11-26
4.3
None Remote Medium Not required None Partial None
In SAP NetWeaver Application Server for ABAP, from 7.0 to 7.02, 7.30, 7.31, 7.40 and from 7.50 to 7.53, applications do not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
37 CVE-2018-2464 79 XSS 2018-09-11 2018-11-09
4.3
None Remote Medium Not required None Partial None
SAP WebDynpro Java, versions 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in a stored Cross-Site Scripting (XSS) vulnerability.
38 CVE-2018-2460 295 2018-09-11 2018-11-16
4.3
None Remote Medium Not required Partial None None
SAP Business One Android application, version 1.2, does not verify the certificate properly for HTTPS connection. This allows attacker to do MITM attack.
39 CVE-2018-2457 200 +Info 2018-09-11 2018-11-16
4.0
None Remote Low Single system Partial None None
Under certain conditions SAP Adaptive Server Enterprise, version 16.0, allows some privileged users to access information which would otherwise be restricted.
40 CVE-2018-2452 79 XSS 2018-09-11 2018-11-09
4.3
None Remote Medium Not required None Partial None
The logon application of SAP NetWeaver AS Java 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50 does not sufficiently encode user-controlled inputs, resulting in a cross-site scripting (XSS) vulnerability.
41 CVE-2018-2447 89 Sql 2018-08-14 2018-10-11
4.0
None Remote Low Single system Partial None None
SAP BusinessObjects Business Intelligence (Launchpad Web Intelligence), version 4.2, allows an attacker to execute crafted InfoObject queries, exposing the CMS InfoObjects database.
42 CVE-2018-2444 79 XSS 2018-08-14 2018-10-12
4.3
None Remote Medium Not required None Partial None
SAP BusinessObjects Financial Consolidation, versions 10.0, 10.1, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
43 CVE-2018-2439 20 2018-07-10 2018-09-12
4.3
None Remote Medium Not required None None Partial
The SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, has insufficient request validation (for example, where the request is validated for authenticity and validity) and under certain conditions, will process invalid requests. Several areas of the SAP Internet Graphics Server (IGS) did not require sufficient input validation. Namely, the SAP Internet Graphics Server (IGS) HTTP and RFC listener, SAP Internet Graphics Server (IGS) portwatcher when registering a portwatcher to the multiplexer and the SAP Internet Graphics Server (IGS) multiplexer had insufficient input validation and thus allowing a malformed data packet to cause a crash.
44 CVE-2018-2435 79 XSS 2018-07-10 2018-09-05
4.3
None Remote Medium Not required None Partial None
SAP NetWeaver Enterprise Portal from 7.0 to 7.02, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
45 CVE-2018-2434 345 2018-07-10 2019-10-02
4.3
None Remote Medium Not required None Partial None
A content spoofing vulnerability in the following components allows to render html pages containing arbitrary plain text content, which might fool an end user: UI add-on for SAP NetWeaver (UI_Infra, 1.0), SAP UI Implementation for Decoupled Innovations (UI_700, 2.0): SAP NetWeaver 7.00 Implementation, SAP User Interface Technology (SAP_UI 7.4, 7.5, 7.51, 7.52). There is little impact as it is not possible to embed active contents such as JavaScript or hyperlinks.
46 CVE-2018-2432 113 XSS 2018-07-10 2018-09-06
4.9
None Remote Medium Single system Partial Partial None
SAP BusinessObjects Business Intelligence (BI Launchpad and Central Management Console) versions 4.10, 4.20 and 4.30 allow an attacker to include invalidated data in the HTTP response header sent to a Web user. Successful exploitation of this vulnerability may lead to advanced attacks, including: cross-site scripting and page hijacking.
47 CVE-2018-2431 79 XSS 2018-07-10 2018-09-06
4.3
None Remote Medium Not required None Partial None
SAP BusinessObjects Business Intelligence Suite, versions 4.10 and 4.20, does not sufficiently encode user controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
48 CVE-2018-2416 20 2018-05-09 2018-08-15
4.0
None Remote Low Single system None None Partial
SAP Identity Management 7.2 and 8.0 do not sufficiently validate an XML document accepted from an untrusted source.
49 CVE-2018-2415 172 2018-05-09 2019-10-09
4.3
None Remote Medium Not required None Partial None
SAP NetWeaver Application Server Java Web Container and HTTP Service (Engine API, from 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; J2EE Engine Server Core 7.11, 7.30, 7.31, 7.40, 7.50) do not sufficiently encode user controlled inputs, resulting in a content spoofing vulnerability when error pages are displayed.
50 CVE-2018-2406 428 Dir. Trav. 2018-04-10 2019-10-09
4.6
None Local Low Not required Partial Partial Partial
Unquoted windows search path (directory/path traversal) vulnerability in Crystal Reports Server, OEM Edition (CRSE), 4.0, 4.10, 4.20, 4.30, startup path.
Total number of vulnerabilities : 141   Page : 1 (This Page)2 3
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.