Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap abap platform 7.40 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-6181
Under some circumstances the SAML SSO implementation in the SAP NetWeaver (SAP_BASIS versions 702, 730, 731, 740 and SAP ABAP Platform (SAP_BASIS versions 750, 751, 752, 753, 754), allows an malicious user to include invalidated data in the HTTP response header sent to a Web user...
Sap Abap Platform 7.50
Sap Abap Platform 7.51
Sap Abap Platform 7.52
Sap Abap Platform 7.53
Sap Abap Platform 7.54
Sap Netweaver 7.02
Sap Netweaver 7.30
Sap Netweaver 7.31
Sap Netweaver 7.40
4
CVSSv2
CVE-2020-6280
SAP NetWeaver (ABAP Server) and ABAP Platform, versions 731, 740, 750, allows an attacker with admin privileges to access certain files which should otherwise be restricted, leading to Information Disclosure.
Sap Abap Platform 7.50
Sap Abap Platform 7.40
Sap Abap Platform 7.31
Sap Netweaver Application Server Abap 750
Sap Netweaver Application Server Abap 731
Sap Netweaver Application Server Abap 740
1 Article
6.5
CVSSv2
CVE-2020-6318
A Remote Code Execution vulnerability exists in the SAP NetWeaver (ABAP Server, up to release 7.40) and ABAP Platform (> release 7.40).Because of this, an attacker can exploit these products via Code Injection, and potentially enabling to take complete control of the products,...
Sap Abap Platform 700
Sap Abap Platform 701
Sap Abap Platform 702
Sap Abap Platform 710
Sap Abap Platform 711
Sap Abap Platform 751
Sap Abap Platform 753
Sap Abap Platform 755
Sap Abap Platform 740
Sap Abap Platform 750
Sap Abap Platform 754
Sap Abap Platform 730
Sap Abap Platform 731
1 Article
4
CVSSv2
CVE-2020-6310
Improper access control in SOA Configuration Trace component in SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 702, 730, 731, 740, 750, allows any authenticated user to enumerate all SAP users, leading to Information Disclosure.
Sap Abap Platform 7.50
Sap Abap Platform 7.40
Sap Abap Platform 7.31
Sap Abap Platform 700
Sap Abap Platform 701
Sap Abap Platform 702
Sap Abap Platform 710
Sap Abap Platform 711
Sap Abap Platform 751
Sap Abap Platform 753
Sap Abap Platform 755
Sap Netweaver Application Server Abap 700
Sap Netweaver Application Server Abap 701
Sap Netweaver Application Server Abap 702
Sap Netweaver Application Server Abap 710
Sap Netweaver Application Server Abap 711
Sap Netweaver Application Server Abap 731
Sap Netweaver Application Server Abap 740
Sap Netweaver Application Server Abap 750
Sap Netweaver Application Server Abap 751
Sap Netweaver Application Server Abap 753
Sap Netweaver Application Server Abap 755
6.5
CVSSv2
CVE-2019-0257
Customizing functionality of SAP NetWeaver AS ABAP Platform (fixed in versions from 7.0 to 7.02, from 7.10 to 7.11, 7.30, 7.31, 7.40, from 7.50 to 7.53, from 7.74 to 7.75) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privil...
Sap Netweaver As Abap
Sap Netweaver Application Server Abap 7.31
Sap Netweaver Application Server Abap
Sap Netweaver Application Server Abap 7.30
Sap Netweaver Application Server Abap 7.40
4
CVSSv2
CVE-2021-27599
SAP NetWeaver ABAP Server and ABAP Platform (Process Integration - Integration Builder Framework), versions - 7.10, 7.30, 7.31, 7.40, 7.50, allows an malicious user to access information under certain conditions, which would otherwise be restricted.
Sap Netweaver Process Integration 7.10
Sap Netweaver Process Integration 7.30
Sap Netweaver Process Integration 7.31
Sap Netweaver Process Integration 7.40
Sap Netweaver Process Integration 7.50
6.5
CVSSv2
CVE-2018-2494
Necessary authorization checks for an authenticated user, resulting in escalation of privileges, have been fixed in SAP Basis AS ABAP of SAP NetWeaver 700 to 750, from 750 onwards delivered as ABAP Platform.
Sap Business Application Software Integrated Solution
Sap Business Application Software Integrated Solution 7.31
Sap Business Application Software Integrated Solution 7.40
4
CVSSv2
CVE-2021-27604
In order to prevent XML External Entity vulnerability in SAP NetWeaver ABAP Server and ABAP Platform (Process Integration - Enterprise Service Repository JAVA Mappings), versions - 7.10, 7.20, 7.30, 7.31, 7.40, 7.50, SAP recommends to refer this note.
Sap Netweaver Process Integration 7.10
Sap Netweaver Process Integration 7.20
Sap Netweaver Process Integration 7.30
Sap Netweaver Process Integration 7.31
Sap Netweaver Process Integration 7.40
Sap Netweaver Process Integration 7.50
4
CVSSv2
CVE-2019-0271
ABAP Server (used in NetWeaver and Suite/ERP) and ABAP Platform does not sufficiently validate an XML document accepted from an untrusted source, leading to an XML External Entity (XEE) vulnerability. Fixed in Kernel 7.21 or 7.22, that is ABAP Server 7.00 to 7.31 and Kernel 7.45,...
Sap Advanced Business Application Programming Server
Sap Advanced Business Application Programming Platform -
Sap Sap Kernel 7.22
Sap Sap Kernel 7.21
Sap Sap Kernel 7.49
Sap Sap Kernel 7.45
Sap Sap Kernel 7.53
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started