Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap hana database 1.00 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv2
CVE-2021-21474
SAP HANA Database, versions - 1.0, 2.0, accepts SAML tokens with MD5 digest, an attacker who manages to obtain an MD5-digest signed SAML Assertion issued for an SAP HANA instance might be able to tamper with it and alter it in a way that the digest continues to be the same and wi...
Sap Hana Database 2.00
Sap Hana Database 1.00
5
CVSSv2
CVE-2019-0350
SAP HANA Database, versions 1.0, 2.0, allows an unauthorized malicious user to send a malformed connection request, which crashes the indexserver of an SAP HANA instance, leading to Denial of Service
Sap Hana Database 2.00
Sap Hana Database 1.00
5
CVSSv2
CVE-2017-16687
The user self-service tools of SAP HANA extended application services, classic user self-service, a part of SAP HANA Database versions 1.00 and 2.00, can be misused to enumerate valid and invalid user accounts. An unauthenticated user could use the error messages to determine if ...
Sap Hana Database 2.00
Sap Hana Database 1.00
5
CVSSv2
CVE-2018-2424
SAP UI5 did not validate user input before adding it to the DOM structure. This may lead to malicious user-provided JavaScript code being added to the DOM that could steal user information. Software components affected are: SAP Hana Database 1.00, 2.00; SAP UI5 1.00; SAP UI5 (Jav...
Sap Ui 7.51
Sap Ui 7.52
Sap Ui5 Java 7.30
Sap Ui5 Java 7.31
Sap Ui 2.0
Sap Ui 7.50
Sap Ui5 Java 7.40
Sap Ui5 1.00
Sap Hana Database 2.00
Sap Ui 7.40
Sap Ui5 Java 7.50
Sap Hana Database 1.00
10
CVSSv2
CVE-2015-7828
SAP HANA Database 1.00 SPS10 and previous versions do not require authentication, which allows remote malicious users to execute arbitrary code or have unspecified other impact via a TrexNet packet to the (1) fcopydir, (2) fmkdir, (3) frmdir, (4) getenv, (5) dumpenv, (6) fcopy, (...
Sap Hana
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started