Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

sap netweaver abap 752 vulnerabilities and exploits

(subscribe to this query)
5.4
CVSSv3
CVE-2021-33664
SAP NetWeaver Application Server ABAP (Applications based on Web Dynpro ABAP), versions - SAP_UI - 750,752,753,754,755, SAP_BASIS - 702, 731 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
Sap Netweaver Application Server Abap 31Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755
5.4
CVSSv3
CVE-2023-23854
SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 700, 701, 702, 731, 740, 750, 751, 752, does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 701
7.5
CVSSv3
CVE-2020-6240
SAP NetWeaver AS ABAP (Web Dynpro ABAP), versions (SAP_UI 750, 752, 753, 754 and SAP_BASIS 700, 710, 730, 731, 804) allows an unauthenticated malicious user to prevent legitimate users from accessing a service, either by crashing or flooding the service leading to Denial of Servi...
Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 710Sap Netweaver Application Server Abap 730Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 804
6.1
CVSSv3
CVE-2023-23858
Due to insufficient input validation, SAP NetWeaver AS for ABAP and ABAP Platform - versions 740, 750, 751, 752, 753, 754, 755, 756, 757, 789, 790, allows an unauthenticated malicious user to send a crafted URL to a user, and by clicking the URL, the tricked user accesses SAP and...
Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 756Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 757
8.8
CVSSv3
CVE-2020-26818
SAP NetWeaver AS ABAP (Web Dynpro), versions - 731, 740, 750, 751, 752, 753, 754, 755, 782, allows an authenticated user to access Web Dynpro components, which reveals sensitive system information that would otherwise be restricted to highly privileged users because of missing au...
Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 782
8.8
CVSSv3
CVE-2020-26819
SAP NetWeaver AS ABAP (Web Dynpro), versions - 731, 740, 750, 751, 752, 753, 754, 755, 782, allows an authenticated user to access Web Dynpro components, that allows them to read and delete database logfiles because of Improper Access Control.
Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 782
6.1
CVSSv3
CVE-2023-0013
The ABAP Keyword Documentation of SAP NetWeaver Application Server - versions 702, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, for ABAP and ABAP Platform does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. On successfu...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 756Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 757
6.1
CVSSv3
CVE-2023-23859
SAP NetWeaver AS for ABAP and ABAP Platform - versions 740, 750, 751, 752, 753, 754, 755, 756, 757, 789, 790, allows an unauthenticated malicious user to craft a malicious link, which when clicked by an unsuspecting user, can be used to read or modify some sensitive information.
Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 756Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 789Sap Netweaver Application Server Abap 757Sap Netweaver Application Server Abap 790
6.1
CVSSv3
CVE-2023-23860
SAP NetWeaver AS for ABAP and ABAP Platform - versions 740, 750, 751, 752, 753, 754, 755, 756, 757, 789, 790, allows an unauthenticated malicious user to craft a link, which when clicked by an unsuspecting user can be used to redirect a user to a malicious site which could read o...
Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 756Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 789Sap Netweaver Application Server Abap 757Sap Netweaver Application Server Abap 790
6.5
CVSSv3
CVE-2020-6270
SAP NetWeaver AS ABAP (Banking Services), versions - 710, 711, 740, 750, 751, 752, 75A, 75B, 75C, 75D, 75E, does not perform necessary authorization checks for an authenticated user due to Missing Authorization Check, allowing wrong and unexpected change of individual conditions ...
Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 710Sap Netweaver Application Server Abap 711Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 75aSap Netweaver Application Server Abap 75bSap Netweaver Application Server Abap 75cSap Netweaver Application Server Abap 75dSap Netweaver Application Server Abap 75e
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook