Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap gui - vulnerabilities and exploits
(subscribe to this query)
935
VMScore
CVE-2008-4830
Insecure method vulnerability in the KWEdit ActiveX control in SAP GUI 6.40 Patch 29 (KWEDIT.DLL 6400.1.1.41) and 7.10 Patch 5 (KWEDIT.DLL 7100.1.1.43) allows remote malicious users to (1) overwrite arbitrary files via the SaveDocumentAs method or (2) read or execute arbitrary fi...
Sap Sap Gui 6.40
Sap Sap Gui 7.10
1 EDB exploit
668
VMScore
CVE-2017-6950
SAP GUI 7.2 up to and including 7.5 allows remote malicious users to bypass intended security policy restrictions and execute arbitrary code via a crafted ABAP code, aka SAP Security Note 2407616.
Sap Gui For Windows 7.30
Sap Gui For Windows 7.40 Core Sp00-sp011
Sap Gui For Windows 7.50 Core Sp000
Sap Gui For Windows 7.20
NA
CVE-2023-32113
SAP GUI for Windows - version 7.70, 8.0, allows an unauthorized malicious user to gain NTLM authentication information of a victim by tricking it into clicking a prepared shortcut file. Depending on the authorizations of the victim, the attacker can read and modify potentially se...
Sap Gui For Windows 7.70
Sap Gui For Windows 8.0
Sap Gui For Windows
187
VMScore
CVE-2021-40503
An information disclosure vulnerability exists in SAP GUI for Windows - versions < 7.60 PL13, 7.70 PL4, which allows an attacker with sufficient privileges on the local client-side PC to obtain an equivalent of the user’s password. With this highly sensitive data leaked,...
Sap Gui For Windows
Sap Gui For Windows 7.60
Sap Gui For Windows 7.70
516
VMScore
CVE-2021-27612
In specific situations SAP GUI for Windows until and including 7.60 PL9, 7.70 PL0, forwards a user to specific malicious website which could contain malware or might lead to phishing attacks to steal credentials of the victim.
Sap Gui For Windows 7.60
Sap Gui For Windows 7.70
828
VMScore
CVE-2008-4827
Multiple heap-based buffer overflows in the AddTab method in the (1) Tab and (2) CTab ActiveX controls in c1sizer.ocx and the (3) TabOne ActiveX control in sizerone.ocx in ComponentOne SizerOne 8.0.20081.140, as used in ComponentOne Studio for ActiveX 2008, TSC2 Help Desk 4.1.8, ...
Sap Sap Gui 6.40
Sap Sap Gui 7.10
Servantix Tsc2 Help Desk 4.18
Sap Tabone 7.0.0.16
Componentone Sizerone 8.0.20081.140
NA
CVE-2022-41205
SAP GUI allows an authenticated malicious user to execute scripts in the local network. On successful exploitation, the attacker can gain access to registries which can cause a limited impact on confidentiality and high impact on availability of the application.
Sap Gui 7.70
NA
CVE-2024-22125
Under certain conditions the Microsoft Edge browser extension (SAP GUI connector for Microsoft Edge) - version 1.0, allows an malicious user to access highly sensitive information which would otherwise be restricted causing high impact on confidentiality.
Sap Gui Connector 1.0
446
VMScore
CVE-2015-2278
The LZH decompression implementation (CsObjectInt::BuildHufTree function in vpa108csulzh.cpp) in SAP MaxDB 7.5 and 7.6, Netweaver Application Server ABAP, Netweaver Application Server Java, Netweaver RFC SDK, GUI, RFC SDK, SAPCAR archive tool, and other products allows context-de...
Sap Maxdb 7.5
Sap Netweaver Java Application Server -
Sap Netweaver Rfc Sdk -
Sap Gui -
Sap Rfc Library
Sap Maxdb 7.6
Sap Netweaver Abap Application Server -
1 Article
668
VMScore
CVE-2015-2282
Stack-based buffer overflow in the LZC decompression implementation (CsObjectInt::CsDecomprLZC function in vpa106cslzc.cpp) in SAP MaxDB 7.5 and 7.6, Netweaver Application Server ABAP, Netweaver Application Server Java, Netweaver RFC SDK, GUI, RFC SDK, SAPCAR archive tool, and ot...
Sap Maxdb 7.6
Sap Netweaver Abap Application Server -
Sap Gui -
Sap Rfc Library
Sap Maxdb 7.5
Sap Netweaver Java Application Server -
Sap Netweaver Rfc Sdk -
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »