Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

sap netweaver as abap 730 vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv3
CVE-2020-6240
SAP NetWeaver AS ABAP (Web Dynpro ABAP), versions (SAP_UI 750, 752, 753, 754 and SAP_BASIS 700, 710, 730, 731, 804) allows an unauthenticated malicious user to prevent legitimate users from accessing a service, either by crashing or flooding the service leading to Denial of Servi...
Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 710Sap Netweaver Application Server Abap 730Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 804
6.1
CVSSv3
CVE-2021-21490
SAP NetWeaver AS for ABAP (Web Survey), versions - 700, 702, 710, 711, 730, 731, 750, 750, 752, 75A, 75F, does not sufficiently encode input and output parameters which results in reflected cross site scripting vulnerability, through which a malicious user can access data relatin...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 710Sap Netweaver Application Server Abap 730Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 711Sap Netweaver Application Server Abap 75aSap Netweaver Application Server Abap 75f
6.3
CVSSv3
CVE-2021-21473
SAP NetWeaver AS ABAP and ABAP Platform, versions - 700, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, contains function module SRM_RFC_SUBMIT_REPORT which fails to validate authorization of an authenticated user thus allowing an unauthorized user to execute reports...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 710Sap Netweaver Application Server Abap 730Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 711Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751
9.8
CVSSv3
CVE-2020-6275
SAP Netweaver AS ABAP, versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, are vulnerable for Server Side Request Forgery Attack where in an attacker can use inappropriate path names containing malicious server names in the import/export of sessions function...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 710Sap Netweaver Application Server Abap 730Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 701Sap Netweaver Application Server Abap 711Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751
6.7
CVSSv3
CVE-2021-44235
Two methods of a utility class in SAP NetWeaver AS ABAP - versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, allow an attacker with high privileges and has direct access to SAP System, to inject code when executing with a certain transaction class...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 756Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 710Sap Netweaver Application Server Abap 701Sap Netweaver Application Server Abap 711Sap Netweaver Application Server Abap 730Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751
4.9
CVSSv3
CVE-2021-40504
A certain template role in SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, contains transport authorizations, which exceed expected display only permissions.
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 753Sap Netweaver Application Server Abap 754Sap Netweaver Application Server Abap 755Sap Netweaver Application Server Abap 756Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 710Sap Netweaver Application Server Abap 701Sap Netweaver Application Server Abap 711Sap Netweaver Application Server Abap 730Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751
6.5
CVSSv3
CVE-2021-33678
A function module of SAP NetWeaver AS ABAP (Reconciliation Framework), versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 75A, 75B, 75B, 75C, 75D, 75E, 75F, allows a high privileged malicious user to inject code that can be executed by the application. An attacker ...
Sap Netweaver Application Server Abap 702Sap Netweaver Application Server Abap 750Sap Netweaver Application Server Abap 752Sap Netweaver Application Server Abap 700Sap Netweaver Application Server Abap 710Sap Netweaver Application Server Abap 730Sap Netweaver Application Server Abap 731Sap Netweaver Application Server Abap 711Sap Netweaver Application Server Abap 740Sap Netweaver Application Server Abap 751Sap Netweaver Application Server Abap 75aSap Netweaver Application Server Abap 75bSap Netweaver Application Server Abap 75cSap Netweaver Application Server Abap 75dSap Netweaver Application Server Abap 75eSap Netweaver Application Server Abap 701Sap Netweaver Application Server Abap 75f
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
injectionCVE-2024-30983CVE-2023-4235CVE-2024-21338privilegeencryptionCVE-2023-4232CVE-2024-31497CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook