Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2006-6346
Unspecified vulnerability in SAP Internet Graphics Service (IGS) 6.40 Patchlevel 15 and previous versions, and 7.00 Patchlevel 3 and previous versions, allows remote malicious users to cause a denial of service (service shutdown), obtain sensitive information (configuration files...
Sap Internet Graphics Server
890
VMScore
CVE-2006-2547
Unspecified vulnerability in the sapdba command in SAP with Informix prior to 700, and 700 up to patch 100, allows local users to execute arbitrary commands via unknown vectors related to "insecure environment variable" handling.
Sap Sapdba
837
VMScore
CVE-2015-8753
SAP Afaria 7.0.6001.5 allows remote malicious users to bypass authorization checks and wipe or lock mobile devices via a crafted request, related to "Insecure signature," aka SAP Security Note 2134905.
Sap Afaria 7.0.6001.5
828
VMScore
CVE-2021-38180
SAP Business One - version 10.0, allows an malicious user to inject formulas when exporting data to Excel (CSV injection) due to improper sanitation during the data export. An attacker could thereby execute arbitrary commands on the victim's computer but only if the victim a...
Sap Business One 10.0
828
VMScore
CVE-2021-33672
Due to missing encoding in SAP Contact Center's Communication Desktop component- version 700, an attacker could send malicious script in chat message. When the message is accepted by the chat recipient, the script gets executed in their scope. Due to the usage of ActiveX in ...
Sap Contact Center 700
828
VMScore
CVE-2014-9320
SAP BusinessObjects Edge 4.1 allows remote malicious users to obtain the SI_PLATFORM_SEARCH_SERVER_LOGON_TOKEN token and consequently gain SYSTEM privileges via vectors involving CORBA calls, aka SAP Note 2039905.
Sap Businessobjects Edge 4.1
828
VMScore
CVE-2020-1494
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logg...
Microsoft Excel 2013
Microsoft Excel 2016
Microsoft Office 2010
Microsoft Office 2013
Microsoft Excel 2010
Microsoft Office 2016
Microsoft Office 2019
Microsoft 365 Apps -
1 Article
828
VMScore
CVE-2020-1495
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logg...
Microsoft Excel 2013
Microsoft Excel 2016
Microsoft Sharepoint Server 2010
Microsoft Office 2010
Microsoft Office 2013
Microsoft Excel 2010
Microsoft Office Online Server -
Microsoft Office 2016
Microsoft Sharepoint Enterprise Server 2013
Microsoft Office 2019
Microsoft 365 Apps -
1 Article
828
VMScore
CVE-2020-1496
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logg...
Microsoft Excel 2013
Microsoft Excel 2016
Microsoft Office 2013
Microsoft Office 2010
Microsoft Excel 2010
Microsoft Office 2016
Microsoft Office 2019
Microsoft 365 Apps -
1 Article
828
VMScore
CVE-2020-1498
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logg...
Microsoft Excel 2013
Microsoft Excel 2016
Microsoft Excel 2010
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office 2016
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »