Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap netweaver abap 7.31 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-0271
ABAP Server (used in NetWeaver and Suite/ERP) and ABAP Platform does not sufficiently validate an XML document accepted from an untrusted source, leading to an XML External Entity (XEE) vulnerability. Fixed in Kernel 7.21 or 7.22, that is ABAP Server 7.00 to 7.31 and Kernel 7.45,...
Sap Advanced Business Application Programming Server
Sap Advanced Business Application Programming Platform -
Sap Sap Kernel 7.22
Sap Sap Kernel 7.21
Sap Sap Kernel 7.49
Sap Sap Kernel 7.45
Sap Sap Kernel 7.53
8.8
CVSSv3
CVE-2019-0257
Customizing functionality of SAP NetWeaver AS ABAP Platform (fixed in versions from 7.0 to 7.02, from 7.10 to 7.11, 7.30, 7.31, 7.40, from 7.50 to 7.53, from 7.74 to 7.75) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privil...
Sap Netweaver As Abap
Sap Netweaver Application Server Abap 7.31
Sap Netweaver Application Server Abap
Sap Netweaver Application Server Abap 7.30
Sap Netweaver Application Server Abap 7.40
8
CVSSv3
CVE-2018-2494
Necessary authorization checks for an authenticated user, resulting in escalation of privileges, have been fixed in SAP Basis AS ABAP of SAP NetWeaver 700 to 750, from 750 onwards delivered as ABAP Platform.
Sap Business Application Software Integrated Solution
Sap Business Application Software Integrated Solution 7.31
Sap Business Application Software Integrated Solution 7.40
6.1
CVSSv3
CVE-2018-2470
In SAP NetWeaver Application Server for ABAP, from 7.0 to 7.02, 7.30, 7.31, 7.40 and from 7.50 to 7.53, applications do not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
Sap Netweaver
Sap Netweaver 7.30
Sap Netweaver 7.31
Sap Netweaver 7.40
NA
CVE-2015-1309
XML external entity vulnerability in the Extended Computer Aided Test Tool (eCATT) in SAP NetWeaver AS ABAP 7.31 and previous versions allows remote malicious users to access arbitrary files via a crafted XML request, related to ECATT_DISPLAY_XMLSTRING_REMOTE, aka SAP Note 201663...
Sap Netweaver Abap
NA
CVE-2014-8312
Business Warehouse (BW) in SAP Netweaver AS ABAP 7.31 allows remote authenticated users to obtain sensitive information via a request to the RSDU_CCMS_GET_PROFILE_PARAM RFC function.
Sap Netweaver Abap 7.31
NA
CVE-2013-6815
The SHSTI_UPLOAD_XML function in the Application Server for ABAP (AS ABAP) in SAP NetWeaver 7.31 and previous versions allows remote malicious users to cause a denial of service via unspecified vectors, related to an XML External Entity (XXE) issue.
Sap Netweaver 7.0
Sap Netweaver 7.02
Sap Netweaver 7.01
Sap Netweaver 4.0
Sap Netweaver
Sap Netweaver 7.30
Sap Netweaver 7.10
Sap Netweaver 7.03
Sap Netweaver 6.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2