Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

sap customer relationship management 702 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2023-27897
In SAP CRM - versions 700, 701, 702, 712, 713, an attacker who is authenticated with a non-administrative role and a common remote execution authorization can use a vulnerable interface to execute an application function to perform actions which they would not normally be permitt...
Sap Customer Relationship Management 700Sap Customer Relationship Management 701Sap Customer Relationship Management 702Sap Customer Relationship Management 712Sap Customer Relationship Management 713
578
VMScore
CVE-2021-33676
A missing authority check in SAP CRM, versions - 700, 701, 702, 712, 713, 714, could be leveraged by an attacker with high privileges to compromise confidentiality, integrity, or availability of the system.
Sap Customer Relationship Management 700Sap Customer Relationship Management 701Sap Customer Relationship Management 702Sap Customer Relationship Management 712Sap Customer Relationship Management 713Sap Customer Relationship Management 714
383
VMScore
CVE-2017-15294
The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
Sap Customer Relationship Management 700Sap Customer Relationship Management 701Sap Customer Relationship Management 702Sap Customer Relationship Management 731Sap Customer Relationship Management 730Sap Customer Relationship Management 733Sap Customer Relationship Management 732Sap Customer Relationship Management 754
605
VMScore
CVE-2017-15296
The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964.
Sap Customer Relationship Management 702Sap Customer Relationship Management 731Sap Customer Relationship Management 700Sap Customer Relationship Management 701Sap Customer Relationship Management 733Sap Customer Relationship Management 754Sap Customer Relationship Management 730Sap Customer Relationship Management 732
NA
CVE-2023-33986
SAP CRM ABAP (Grantor Management) - versions 700, 701, 702, 712, 713, 714, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and integr...
Sap Customer Relationship Management Abap 430
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-29895injectCVE-2023-52689CVE-2024-5049CVE-2024-5051privilege escalationphysicalCVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook