Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap netweaver abap 7.53 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2021-27622
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CDrawRaster::LoadIm...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
383
VMScore
CVE-2021-27624
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CiXMLIStreamRawBuff...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
1 Github repository
383
VMScore
CVE-2021-27625
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method IgsData::freeMemory...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
383
VMScore
CVE-2021-27627
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method ChartInterpreter::D...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
383
VMScore
CVE-2021-27626
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CMiniXMLParser::Par...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
383
VMScore
CVE-2018-2470
In SAP NetWeaver Application Server for ABAP, from 7.0 to 7.02, 7.30, 7.31, 7.40 and from 7.50 to 7.53, applications do not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
Sap Netweaver
Sap Netweaver 7.30
Sap Netweaver 7.31
Sap Netweaver 7.40
383
VMScore
CVE-2020-6184
Under certain conditions, ABAP Online Community in SAP NetWeaver (SAP_BASIS version 7.40) and SAP S/4HANA (SAP_BASIS versions 7.50, 7.51, 7.52, 7.53, 7.54), does not sufficiently encode user-controlled inputs, resulting in Reflected Cross-Site Scripting (XSS) vulnerability.
Sap Netweaver 7.40
Sap S\\/4hana 7.50
Sap S\\/4hana 7.51
Sap S\\/4hana 7.52
Sap S\\/4hana 7.53
Sap S\\/4hana 7.54
312
VMScore
CVE-2020-6185
Under certain conditions ABAP Online Community in SAP NetWeaver (SAP_BASIS version 7.40) and SAP S/4HANA (SAP_BASIS versions 7.50, 7.51, 7.52, 7.53, 7.54), allows an authenticated malicious user to store a malicious payload which results in Stored Cross Site Scripting vulnerabili...
Sap Netweaver 7.40
Sap S\\/4hana 7.50
Sap S\\/4hana 7.51
Sap S\\/4hana 7.52
Sap S\\/4hana 7.53
Sap S\\/4hana 7.54
356
VMScore
CVE-2019-0271
ABAP Server (used in NetWeaver and Suite/ERP) and ABAP Platform does not sufficiently validate an XML document accepted from an untrusted source, leading to an XML External Entity (XEE) vulnerability. Fixed in Kernel 7.21 or 7.22, that is ABAP Server 7.00 to 7.31 and Kernel 7.45,...
Sap Advanced Business Application Programming Server
Sap Advanced Business Application Programming Platform -
Sap Sap Kernel 7.22
Sap Sap Kernel 7.21
Sap Sap Kernel 7.49
Sap Sap Kernel 7.45
Sap Sap Kernel 7.53
578
VMScore
CVE-2019-0270
ABAP Server of SAP NetWeaver and ABAP Platform fail to perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has been corrected in the following versions: KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22,...
Sap Advanced Business Application Programming Platform Krnl64uc 7.21
Sap Advanced Business Application Programming Platform Krnl64uc 7.22ext
Sap Advanced Business Application Programming Platform Krnl64nuc 7.22
Sap Advanced Business Application Programming Platform Krnl32uc 7.21ext
Sap Advanced Business Application Programming Platform Krnl32nuc 7.22
Sap Advanced Business Application Programming Platform Krnl32nuc 7.21
Sap Advanced Business Application Programming Platform Kernel 7.15
Sap Advanced Business Application Programming Platform Kernel 7.75
Sap Advanced Business Application Programming Platform Kernel 7.22
Sap Advanced Business Application Programming Platform Krnl64uc 7.73
Sap Advanced Business Application Programming Platform Krnl64uc 7.74
Sap Advanced Business Application Programming Platform Krnl64uc 8.04
Sap Advanced Business Application Programming Platform Krnl64nuc 7.21ext
Sap Advanced Business Application Programming Platform Kernel 7.49
Sap Advanced Business Application Programming Platform Kernel 7.53
Sap Advanced Business Application Programming Platform Kernel 7.73
Sap Advanced Business Application Programming Platform Kernel 7.74
Sap Advanced Business Application Programming Platform Krnl64uc 7.21ext
Sap Advanced Business Application Programming Platform Krnl32uc 7.21
Sap Advanced Business Application Programming Platform Krnl32uc 7.22
Sap Advanced Business Application Programming Platform Krnl32uc 7.22ext
Sap Advanced Business Application Programming Platform Krnl32nuc 7.21ext
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »