Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap netweaver 700 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-38183
SAP NetWeaver - versions 700, 701, 702, 730, does not sufficiently encode user-controlled inputs, allowing an malicious user to cause a potential victim to supply a malicious content to a vulnerable web application, which is then reflected to the victim and executed by the web br...
Sap Netweaver 700
Sap Netweaver 701
Sap Netweaver 702
Sap Netweaver 730
NA
CVE-2023-0021
Due to insufficient encoding of user input, SAP NetWeaver - versions 700, 701, 702, 731, 740, 750, allows an unauthenticated malicious user to inject code that may expose sensitive data like user ID and password, which could lead to reflected Cross-Site scripting. These endpoints...
Sap Netweaver 701
Sap Netweaver 702
Sap Netweaver 700
Sap Netweaver 731
Sap Netweaver 740
Sap Netweaver 750
4.3
CVSSv2
CVE-2022-22534
Due to insufficient encoding of user input, SAP NetWeaver allows an unauthenticated malicious user to inject code that may expose sensitive data like user ID and password. These endpoints are normally exposed over the network and successful exploitation can partially impact confi...
Sap Netweaver 701
Sap Netweaver 702
Sap Netweaver 700
Sap Netweaver 731
Sap Netweaver 740
Sap Netweaver 750
Sap Netweaver 751
Sap Netweaver 752
Sap Netweaver 753
Sap Netweaver 754
Sap Netweaver 755
Sap Netweaver 756
5
CVSSv2
CVE-2021-33677
SAP NetWeaver ABAP Server and ABAP Platform, versions - 700, 702, 730, 731, 804, 740, 750, 784, expose functions to external which can lead to information disclosure.
Sap Netweaver Application Server Abap 702
Sap Netweaver Application Server Abap 750
Sap Netweaver Abap 700
Sap Netweaver Abap 702
Sap Netweaver Abap 731
Sap Netweaver Abap 740
Sap Netweaver Abap 750
Sap Netweaver Abap 804
Sap Netweaver Abap 730
Sap Netweaver Abap 784
Sap Netweaver Application Server Abap 700
Sap Netweaver Application Server Abap 730
Sap Netweaver Application Server Abap 731
Sap Netweaver Application Server Abap 740
Sap Netweaver Application Server Abap 784
Sap Netweaver Application Server Abap 804
NA
CVE-2023-49581
SAP GUI for Windows and SAP GUI for Java allow an unauthenticated malicious user to access information which would otherwise be restricted and confidential. In addition, this vulnerability allows the unauthenticated malicious user to write data to a database table. By doing so th...
Sap Netweaver Application Server Abap 700
Sap Netweaver Application Server Abap 731
Sap Netweaver Application Server Abap 740
Sap Netweaver Application Server Abap 750
5.5
CVSSv2
CVE-2022-26102
Due to missing authorization check, SAP NetWeaver Application Server for ABAP - versions 700, 701, 702, 731, allows an authenticated attacker, to access content on the start screen of any transaction that is available with in the same SAP system even if he/she isn't authoriz...
Sap Netweaver Application Server Abap 702
Sap Netweaver Application Server Abap 700
Sap Netweaver Application Server Abap 731
Sap Netweaver Application Server Abap 701
4.6
CVSSv2
CVE-2021-27611
SAP NetWeaver AS ABAP, versions - 700, 701, 702, 730, 731, allow a high privileged malicious user to inject malicious code by executing an ABAP report when the attacker has access to the local SAP system. The attacker could then get access to data, overwrite them, or execute a de...
Sap Netweaver Application Server Abap 702
Sap Netweaver Application Server Abap 700
Sap Netweaver Application Server Abap 730
Sap Netweaver Application Server Abap 731
Sap Netweaver Application Server Abap 701
NA
CVE-2023-24522
Due to insufficient input sanitization, SAP NetWeaver AS ABAP (Business Server Pages) - versions 700, 701, 702, 731, 740, allows an unauthenticated user to alter the current session of the user by injecting the malicious code over the network and gain access to the unintended dat...
Sap Netweaver Application Server Abap 702
Sap Netweaver Application Server Abap 700
Sap Netweaver Application Server Abap 731
Sap Netweaver Application Server Abap 740
Sap Netweaver Application Server Abap 701
NA
CVE-2022-41215
SAP NetWeaver ABAP Server and ABAP Platform allows an unauthenticated malicious user to redirect users to a malicious site due to insufficient URL validation. This could lead to the user being tricked to disclose personal information.
Sap Netweaver Application Server Abap 750
Sap Netweaver Application Server Abap 700
Sap Netweaver Application Server Abap 731
Sap Netweaver Application Server Abap 740
Sap Netweaver Application Server Abap 789
4.3
CVSSv2
CVE-2007-3496
Cross-site scripting (XSS) vulnerability in SAP Web Dynpro Java (BC-WD-JAV) in SAP NetWeaver Nw04 SP15 through SP19 and Nw04s SP7 through SP11, aka SAP Java Technology Services 640 before SP20 and SAP Web Dynpro Runtime Core Components 700 before SP12, allows remote malicious use...
Sap Netweaver Nw04 Sp17
Sap Netweaver Nw04 Sp18
Sap Sap Basis Component 640
Sap Sap Basis Component 700
Sap Netweaver Nw04s Sp11
Sap Netweaver Nw04s Sp7
Sap Netweaver Nw04 Sp19
Sap Netweaver Nw04s Sp10
Sap Netweaver Nw04 Sp15
Sap Netweaver Nw04 Sp16
Sap Netweaver Nw04s Sp8
Sap Netweaver Nw04s Sp9
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »