Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap adaptive server enterprise 16.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2016-7402
SAP ASE 16.0 SP02 PL03 and prior versions allow attackers who own SourceDB and TargetDB databases to elevate privileges to sa (system administrator) via dbcc import_sproc SQL injection.
Sybase Adaptive Server Enterprise
7.5
CVSSv2
CVE-2014-6284
SAP Adaptive Server Enterprise (ASE) prior to 15.7 SP132 and 16.0 prior to 16.0 SP01 allows remote malicious users to bypass the challenge and response mechanism and obtain access to the probe account via a crafted response, aka SAP Security Note 2113995.
Sybase Adaptive Server Enterprise
Sybase Adaptive Server Enterprise 16.0
7.2
CVSSv2
CVE-2022-31594
A highly privileged user can exploit SUID-root program to escalate his privileges to root on a local Unix system.
Sap Adaptive Server Enterprise 16.0
Sap Adaptive Server Enterprise Krnl64uc 7.22
Sap Adaptive Server Enterprise Krnl64uc 7.22ext
Sap Adaptive Server Enterprise Krnl64uc 7.49
Sap Adaptive Server Enterprise Krnl64uc 7.53
Sap Adaptive Server Enterprise Krnl64nuc 7.22
Sap Adaptive Server Enterprise Krnl64nuc 7.22ext
Sap Adaptive Server Enterprise Krnl64nuc 7.49
Sap Adaptive Server Enterprise Kernel 7.22
Sap Adaptive Server Enterprise Kernel 7.49
Sap Adaptive Server Enterprise Kernel 7.53
6.7
CVSSv2
CVE-2020-6250
SAP Adaptive Server Enterprise, version 16.0, allows an authenticated malicious user to exploit certain misconfigured endpoints exposed over the adjacent network, to read system administrator password leading to Information Disclosure. This could help the malicious user to read/w...
Sap Adaptive Server Enterprise 16.0
6.5
CVSSv2
CVE-2020-6241
SAP Adaptive Server Enterprise, version 16.0, allows an authenticated user to execute crafted database queries to elevate privileges of users in the system, leading to SQL Injection.
Sap Adaptive Server Enterprise 16.0
6.5
CVSSv2
CVE-2020-6248
SAP Adaptive Server Enterprise (Backup Server), version 16.0, does not perform the necessary validation checks for an authenticated user while executing DUMP or LOAD command allowing arbitrary code execution or Code Injection.
Sap Adaptive Server Enterprise Backup Server 16.0
1 Article
6.5
CVSSv2
CVE-2020-6253
Under certain conditions, SAP Adaptive Server Enterprise (Web Services), versions 15.7, 16.0, allows an authenticated user to execute crafted database queries to elevate their privileges, modify database objects, or execute commands they are not otherwise authorized to execute, l...
Sap Adaptive Server Enterprise 15.7
Sap Adaptive Server Enterprise 16.0
6.5
CVSSv2
CVE-2020-6243
Under certain conditions, SAP Adaptive Server Enterprise (XP Server on Windows Platform), versions 15.7, 16.0, does not perform the necessary checks for an authenticated user while executing the extended stored procedure, allowing an malicious user to read, modify, delete restric...
Sap Adaptive Server Enterprise 15.7
Sap Adaptive Server Enterprise 16.0
1 Article
5.2
CVSSv2
CVE-2020-6252
Under certain conditions SAP Adaptive Server Enterprise (Cockpit), version 16.0, allows an attacker with access to local network, to get sensitive and confidential information, leading to Information Disclosure. It can be used to get user account credentials, tamper with system d...
Sap Adaptive Server Enterprise Cockpit 16.0
5
CVSSv2
CVE-2018-2468
Under certain conditions the backup server in SAP Adaptive Server Enterprise (ASE), versions 15.7 and 16.0, allows an malicious user to access information which would otherwise be restricted.
Sap Adaptive Server Enterprise 16.0
Sap Adaptive Server Enterprise 15.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »