Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adaptive server enterprise vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-2469
Under certain conditions SAP Adaptive Server Enterprise (ASE), versions 15.7 and 16.0, allows an malicious user to access information which would otherwise be restricted.
Sap Adaptive Server Enterprise 16.0
Sap Adaptive Server Enterprise 15.7
2.7
CVSSv2
CVE-2020-6317
In certain situations, an attacker with regular user credentials and local access to an ASE cockpit installation can access sensitive information which appears in the installation log files. This information although sensitive is of limited utility and cannot be used to further a...
Sap Adaptive Server Enterprise 15.7
Sap Adaptive Server Enterprise 16.0
7.5
CVSSv2
CVE-2016-7402
SAP ASE 16.0 SP02 PL03 and prior versions allow attackers who own SourceDB and TargetDB databases to elevate privileges to sa (system administrator) via dbcc import_sproc SQL injection.
Sybase Adaptive Server Enterprise
7.5
CVSSv2
CVE-2015-1310
SQL injection vulnerability in SAP Adaptive Server Enterprise (Sybase ASE) allows remote malicious users to execute arbitrary SQL commands via unspecified vectors, aka SAP Note 2113333. NOTE: the provenance of this information is unknown; the details are obtained solely from thir...
Sybase Adaptive Server Enterprise
10
CVSSv2
CVE-2013-6245
Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise (ASE) prior to 15.0.3 ESD#4.3. 15.5 prior to 15.5 ESD#5.3, and 15.7 prior to 15.7 SP50 or 15.7 SP100 allows remote authenticated users to execute arbitrary code via unspecified vectors.
Sybase Adaptive Server Enterprise
6.5
CVSSv2
CVE-2020-6248
SAP Adaptive Server Enterprise (Backup Server), version 16.0, does not perform the necessary validation checks for an authenticated user while executing DUMP or LOAD command allowing arbitrary code execution or Code Injection.
Sap Adaptive Server Enterprise Backup Server 16.0
1 Article
7.1
CVSSv2
CVE-2013-6867
Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise (ASE) 15.7 prior to 15.7 SP50 or 15.7 SP100 allows remote malicious users to cause a denial of service via unspecified vectors.
Sybase Adaptive Server Enterprise 15.7
5
CVSSv2
CVE-2013-7245
The Backup Server component in SAP Sybase ASE 15.7 before SP51 allows remote malicious users to bypass access restrictions and perform database dumps by leveraging failure to validate credentials, aka SAP Security Note 1927859.
Sybase Adaptive Server Enterprise 15.7
4.6
CVSSv2
CVE-2020-6295
Under certain conditions the SAP Adaptive Server Enterprise, version 16.0, allows an malicious user to access encrypted sensitive and confidential information through publicly readable installation log files leading to a compromise of the installed Cockpit. This compromise could ...
Sap Adaptive Server Enterprise 16.0
4
CVSSv2
CVE-2018-2457
Under certain conditions SAP Adaptive Server Enterprise, version 16.0, allows some privileged users to access information which would otherwise be restricted.
Sap Adaptive Server Enterprise 16.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »