Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap financial consolidation 10.1 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-0370
Due to missing input validation, SAP Financial Consolidation, prior to 10.0 and 10.1, enables an malicious user to use crafted input to interfere with the structure of the surrounding query leading to XPath Injection.
Sap Financial Consolidation 10.0
Sap Financial Consolidation 10.1
5.4
CVSSv3
CVE-2019-0369
SAP Financial Consolidation, prior to 10.0 and 10.1, does not sufficiently encode user-controlled inputs, which allows an malicious user to execute scripts by uploading files containing malicious scripts, leading to reflected cross site scripting vulnerability.
Sap Financial Consolidation 10.0
Sap Financial Consolidation 10.1
6.1
CVSSv3
CVE-2018-2444
SAP BusinessObjects Financial Consolidation, versions 10.0, 10.1, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
Sap Businessobjects Financial Consolidation 10.1
Sap Businessobjects Financial Consolidation 10.0
7.5
CVSSv3
CVE-2018-2499
A security weakness in SAP Financial Consolidation Cube Designer (BOBJ_EADES fixed in versions 8.0, 10.1) may allow an malicious user to discover the password hash of an admin user.
Sap Financial Consolidation Cube Designer Bobj Eades 8.0
Sap Financial Consolidation Cube Designer 10.1
1 Article
5.3
CVSSv3
CVE-2022-26104
SAP Financial Consolidation - version 10.1, does not perform necessary authorization checks for updating homepage messages, resulting for an unauthorized user to alter the maintenance system message.
Sap Financial Consolidation 10.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started