Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hana vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-7993
The Extended Application Services (aka XS or XS Engine) in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote malicious users to execute arbitrary code via unspecified vectors related to "HTTP Login," aka SAP Security Note 2197397.
Sap Hana 1.00.73.00.389160
NA
CVE-2015-7994
The SQL interface in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote malicious users to execute arbitrary code via unspecified vectors related to "SQL Login," aka SAP Security Note 2197428.
Sap Hana 1.00.73.00.389160
NA
CVE-2015-7991
The Web Dispatcher service in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote malicious users to read web dispatcher and security trace files and possibly obtain passwords via unspecified vectors, aka SAP Security Note 2148854.
Sap Hana 1.00.73.00.389160
NA
CVE-2015-7992
SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote authenticated users to cause a denial of service (memory corruption and indexserver crash) via unspecified vectors to the EXECUTE_SEARCH_RULE_SET stored procedure, aka SAP Security Note 2175928.
Sap Hana 1.00.73.00.389160
NA
CVE-2015-3994
The grant.xsfunc application in testApps/grantAccess/ in the XS Engine in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote authenticated users to spoof log entries via a crafted request, aka SAP Security Note 2109818.
Sap Hana 1.00.73.00.389160
NA
CVE-2015-6507
The hdbsql client 1.00.091.00 Build 1418659308-1530 in SAP HANA allows local users to cause a denial of service (memory corruption) and possibly have unspecified other impact via unknown vectors, aka SAP Security Note 2140700.
Sap Hana 1.00.091.00
5.4
CVSSv3
CVE-2021-24302
The Hana Flv Player WordPress plugin up to and including 3.1.3 is vulnerable to an Authenticated Stored Cross-Site Scripting (XSS) vulnerability within the 'Default Skin' field.
Neox Hana Flv Player
5.3
CVSSv3
CVE-2016-6145
The SQL interface in SAP HANA DB 1.00.091.00.1418659308 provides different error messages for failed login attempts depending on whether the username exists and is locked when the detailed_error_on_connect option is not supported or is configured as "False," which allow...
Sap Hana Db 1.00.091.00.1418659308
5.5
CVSSv3
CVE-2016-6149
SAP HANA SPS09 1.00.091.00.14186593 allows local users to obtain sensitive information by leveraging the EXPORT statement to export files, aka SAP Security Note 2252941.
Sap Hana Sps09 1.00.091.00.14186593
4.3
CVSSv3
CVE-2016-3639
SAP HANA DB 1.00.091.00.1418659308 allows remote malicious users to obtain sensitive topology information via an unspecified HTTP request, aka SAP Security Note 2176128.
Sap Hana Db 1.00.091.00.1418659308
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »