abap platform vulnerabilities and exploits

(subscribe to this query)

A Remote Code Execution vulnerability exists in the SAP NetWeaver (ABAP Server, up to release 7.40) and ABAP Platform (> release 7.40).Because of this, an attacker can exploit these products via Code Injection, and potentially enabling to take complete control of the products,...

Sap Se Sap Netweaver (abap Server) And Abap Platform Sap Abap Platform 700 Sap Abap Platform 701 Sap Abap Platform 702 Sap Abap Platform 710 Sap Abap Platform 711 Sap Abap Platform 730 Sap Abap Platform 731 Sap Abap Platform 740 Sap Abap Platform 750 Sap Abap Platform 751 Sap Abap Platform 753

1 Article

In SAP ABA (Application Basis) - versions 700, 701, 702, 731, 740, 750, 751, 752, 75C, 75I, an attacker authenticated as a user with a remote execution authorization can use a vulnerable interface. This allows the malicious user to use the interface to invoke an application funct...

Sap Sap Aba Sap Se Sap Aba (application Basis)Sap Abap Platform 75c Sap Abap Platform 75i Sap Abap Platform 700 Sap Abap Platform 701 Sap Abap Platform 702 Sap Abap Platform 731 Sap Abap Platform 740 Sap Abap Platform 750 Sap Abap Platform 751 Sap Abap Platform 752

Due to insufficient input sanitization, SAP ABAP - versions 751, 753, 753, 754, 756, 757, 791, allows an authenticated high privileged user to alter the current session of the user by injecting the malicious database queries over the network and gain access to the unintended data...

Sap Abap Platform 751 Sap Abap Platform 753 Sap Abap Platform 754 Sap Abap Platform 756 Sap Abap Platform 757 Sap Abap Platform 791

SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 753, 755, allows an malicious user to inject code that can be executed by the application, leading to Code Injection. An attacker could thereby control the behavior of the ...

Sap Se Sap Netweaver (abap Server) And Abap Platform Sap Abap Platform 7.31 Sap Abap Platform 700 Sap Abap Platform 701 Sap Abap Platform 702 Sap Abap Platform 710 Sap Abap Platform 711 Sap Abap Platform 740 Sap Abap Platform 750 Sap Abap Platform 751 Sap Abap Platform 753 Sap Abap Platform 755

Improper access control in SOA Configuration Trace component in SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 702, 730, 731, 740, 750, allows any authenticated user to enumerate all SAP users, leading to Information Disclosure.

Sap Se Sap Netweaver (abap Server) And Abap Platform Sap Abap Platform 7.31 Sap Abap Platform 7.40 Sap Abap Platform 7.50 Sap Abap Platform 700 Sap Abap Platform 701 Sap Abap Platform 702 Sap Abap Platform 710 Sap Abap Platform 711 Sap Abap Platform 751 Sap Abap Platform 753 Sap Abap Platform 755

Internally used text extraction reports allow an malicious user to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.

Sap Se Sap Abap Server & Abap Platform (translation Tools)Sap Abap Platform 701 Sap Abap Platform 740 Sap Abap Platform 750 Sap Abap Platform 751 Sap Abap Platform 752 Sap Abap Platform 753 Sap Abap Platform 754 Sap Abap Platform 755 Sap Abap Platform 756 Sap Abap Platform 804 Sap Netweaver Application Server Abap 701

SAP ABAP Platform Kernel - versions 7.77, 7.81, 7.85, 7.86, does not perform necessary authorization checks for an authenticated business user, resulting in escalation of privileges. That means this business user is able to read and modify data beyond the vulnerable system. Howev...

Sap Se Sap Abap Platform Kernel Sap Abap Platform Kernel 7.77 Sap Abap Platform Kernel 7.81 Sap Abap Platform Kernel 7.85 Sap Abap Platform Kernel 7.86

SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 740, 750, 751, 752, 753, 754, 755, allows a business user to access the list of users in the given system using value help, leading to Information Disclosure.

Sap Se Sap Netweaver (abap Server) And Abap Platform Sap Abap Platform 740 Sap Abap Platform 750 Sap Abap Platform 751 Sap Abap Platform 753 Sap Abap Platform 754 Sap Abap Platform 755 Sap Netweaver Application Server Abap 740 Sap Netweaver Application Server Abap 750 Sap Netweaver Application Server Abap 751 Sap Netweaver Application Server Abap 753 Sap Netweaver Application Server Abap 754

SAP NetWeaver (ABAP Server) and ABAP Platform, versions 731, 740, 750, allows an attacker with admin privileges to access certain files which should otherwise be restricted, leading to Information Disclosure.

Sap Se Sap Netweaver (abap Server) And Abap Platform Sap Abap Platform 7.31 Sap Abap Platform 7.40 Sap Abap Platform 7.50 Sap Netweaver Application Server Abap 731 Sap Netweaver Application Server Abap 740 Sap Netweaver Application Server Abap 750

1 Article

Under some circumstances the SAML SSO implementation in the SAP NetWeaver (SAP_BASIS versions 702, 730, 731, 740 and SAP ABAP Platform (SAP_BASIS versions 750, 751, 752, 753, 754), allows an malicious user to include invalidated data in the HTTP response header sent to a Web user...

Sap Se Sap Netweaver (sap Basis)Sap Se Sap Abap Platform (sap Basis)Sap Abap Platform 7.50 Sap Abap Platform 7.51 Sap Abap Platform 7.52 Sap Abap Platform 7.53 Sap Abap Platform 7.54 Sap Netweaver 7.02 Sap Netweaver 7.30 Sap Netweaver 7.31 Sap Netweaver 7.40

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook