Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2015-3621
Untrusted search path vulnerability in SAP Enterprise Central Component (ECC) allows local users to gain privileges via a Trojan horse program.
Sap Enterprise Central Component -
9.3
CVSSv2
CVE-2013-6820
Unrestricted file upload vulnerability in the SAP NetWeaver Development Infrastructure (NWDI) allows remote malicious users to execute arbitrary code by uploading a file with an executable extension via unspecified vectors.
Sap Netweaver Development Infrastructure -
9.3
CVSSv2
CVE-2012-2611
The DiagTraceR3Info function in the Dialog processor in disp+work.exe 7010.29.15.58313 and 7200.70.18.23869 in the Dispatcher in SAP NetWeaver 7.0 EHP1 and EHP2, when a certain Developer Trace configuration is enabled, allows remote malicious users to execute arbitrary code via a...
Sap Netweaver 7.0
3 EDB exploits
1 Github repository
9.3
CVSSv2
CVE-2010-2590
Heap-based buffer overflow in the CrystalReports12.CrystalPrintControl.1 ActiveX control in PrintControl.dll 12.3.2.753 in SAP Crystal Reports 2008 SP3 Fix Pack 3.2 allows remote malicious users to execute arbitrary code via a long ServerResourceVersion property value.
Sap Crystal Reports 2008
2 EDB exploits
9.3
CVSSv2
CVE-2010-4556
Stack-based buffer overflow in the SapThemeRepository ActiveX control (sapwdpcd.dll) in SAP NetWeaver Business Client allows remote malicious users to execute arbitrary code via the (1) Load and (2) LoadTheme methods.
Sap Netweaver Business Client
9.3
CVSSv2
CVE-2009-2568
Stack-based buffer overflow in Sorinara Streaming Audio Player (SAP) 0.9 allows remote malicious users to execute arbitrary code via a long string in a playlist (.m3u) file.
Sorinara Streaming Audio Player 0.9
2 EDB exploits
9.3
CVSSv2
CVE-2008-4830
Insecure method vulnerability in the KWEdit ActiveX control in SAP GUI 6.40 Patch 29 (KWEDIT.DLL 6400.1.1.41) and 7.10 Patch 5 (KWEDIT.DLL 7100.1.1.43) allows remote malicious users to (1) overwrite arbitrary files via the SaveDocumentAs method or (2) read or execute arbitrary fi...
Sap Sap Gui 6.40
Sap Sap Gui 7.10
1 EDB exploit
9.3
CVSSv2
CVE-2007-4475
Stack-based buffer overflow in EAI WebViewer3D ActiveX control (webviewer3d.dll) in SAP AG SAPgui prior to 7.10 Patch Level 9 allows remote malicious users to execute arbitrary code via a long argument to the SaveViewToSessionFile method.
Sap Sapgui 4.6a
Sap Sapgui 4.6c
Sap Sapgui 4.6d
Sap Sapgui 4.6
Sap Sapgui 4.6b
Sap Sapgui
Sap Sapgui 6.40
2 EDB exploits
9.3
CVSSv2
CVE-2008-4827
Multiple heap-based buffer overflows in the AddTab method in the (1) Tab and (2) CTab ActiveX controls in c1sizer.ocx and the (3) TabOne ActiveX control in sizerone.ocx in ComponentOne SizerOne 8.0.20081.140, as used in ComponentOne Studio for ActiveX 2008, TSC2 Help Desk 4.1.8, ...
Sap Sap Gui 6.40
Sap Sap Gui 7.10
Servantix Tsc2 Help Desk 4.18
Sap Tabone 7.0.0.16
Componentone Sizerone 8.0.20081.140
9.3
CVSSv2
CVE-2008-4387
Unspecified vulnerability in the Simba MDrmSap ActiveX control in mdrmsap.dll in SAP SAPgui allows remote malicious users to execute arbitrary code via unknown vectors involving instantiation by Internet Explorer.
Sap Sapgui
Simba Technologies Mdrmsap Activex Control
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »