Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

sap netweaver as abap 701 vulnerabilities and exploits

(subscribe to this query)
6.7
CVSSv3
CVE-2021-27611
SAP NetWeaver AS ABAP, versions - 700, 701, 702, 730, 731, allow a high privileged malicious user to inject malicious code by executing an ABAP report when the attacker has access to the local SAP system. The attacker could then get access to data, overwrite them, or execute a de...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 730Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 701
4.3
CVSSv3
CVE-2021-42067
In SAP NetWeaver AS for ABAP and ABAP Platform - versions 701, 702, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 786, an attacker authenticated as a regular user can use the S/4 Hana dashboard to reveal systems and services which they would not normally be allowed to se...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Abap 701Sap Netweaver Abap 702Sap Netweaver Abap 731Sap Netweaver Abap 740Sap Netweaver Abap 750Sap Netweaver Abap 751Sap Netweaver Abap 752Sap Netweaver Abap 753Sap Netweaver Abap 754Sap Netweaver Abap 755Sap Netweaver Abap 730Sap Netweaver Abap 756Sap Netweaver Abap 786Sap Netweaver Abap 711Sap Netweaver Application Server Abap 756Sap Netweaver Application Server Abap 730
6.1
CVSSv3
CVE-2023-24522
Due to insufficient input sanitization, SAP NetWeaver AS ABAP (Business Server Pages) - versions 700, 701, 702, 731, 740, allows an unauthenticated user to alter the current session of the user by injecting the malicious code over the network and gain access to the unintended dat...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 701
8.8
CVSSv3
CVE-2021-38178
The software logistics system of SAP NetWeaver AS ABAP and ABAP Platform versions - 700, 701, 702, 710, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, enables a malicious user to transfer ABAP code artifacts or content, by-passing the established quality gates. By this vulnera...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Abap 700Sap Netweaver Abap 701Sap Netweaver Abap 702Sap Netweaver Abap 710Sap Netweaver Abap 730Sap Netweaver Abap 731Sap Netweaver Abap 740Sap Netweaver Abap 750Sap Netweaver Abap 751Sap Netweaver Abap 752Sap Netweaver Abap 753Sap Netweaver Abap 754Sap Netweaver Abap 755Sap Netweaver Abap 756Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 710
7.5
CVSSv3
CVE-2022-22540
SAP NetWeaver AS ABAP (Workplace Server) - versions 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 756, 787, allows an malicious user to execute crafted database queries, that could expose the backend database. Successful attacks could result in disclosure of a table of c...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 756Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 701Sap Netweaver Application Server Abap 787
6.1
CVSSv3
CVE-2023-25614
SAP NetWeaver AS ABAP (BSP Framework) application - versions 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, allow an unauthenticated malicious user to inject the code that can be executed by the application over the network. On successful exploitation it can gai...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 756Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 701Sap Netweaver Application Server Abap 757
9.8
CVSSv3
CVE-2020-6275
SAP Netweaver AS ABAP, versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, are vulnerable for Server Side Request Forgery Attack where in an attacker can use inappropriate path names containing malicious server names in the import/export of sessions function...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 710Sap Netweaver Application Server Abap 730Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 701Sap Netweaver Application Server Abap 711Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751
7.4
CVSSv3
CVE-2023-26459
Due to improper input controls In SAP NetWeaver AS for ABAP and ABAP Platform - versions 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, 791, an attacker authenticated as a non-administrative user can craft a request which will trigger the application server to s...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 756Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 701Sap Netweaver Application Server Abap 757Sap Netweaver Application Server Abap 791
6.7
CVSSv3
CVE-2021-44235
Two methods of a utility class in SAP NetWeaver AS ABAP - versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, allow an attacker with high privileges and has direct access to SAP System, to inject code when executing with a certain transaction class...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 756Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 710Sap Netweaver Application Server Abap 701Sap Netweaver Application Server Abap 711Sap Netweaver Application Server Abap 730Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751
6.5
CVSSv3
CVE-2023-27270
SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, 791, has multiple vulnerabilities in a class for test purposes in which an attacker authenticated as a non-administrative user can craft a reque...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 756Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 701Sap Netweaver Application Server Abap 757Sap Netweaver Application Server Abap 791
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
injectionCVE-2024-30983CVE-2023-4235CVE-2024-21338privilegeencryptionCVE-2023-4232CVE-2024-31497CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook