Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2015-7730
SAP BusinessObjects BI Platform 4.1, BusinessObjects Edge 4.0, and BusinessObjects XI (BOXI) 3.1 R3 allow remote malicious users to cause a denial of service (out-of-bounds read and listener crash) via a crafted GIOP packet, aka SAP Security Note 2001108.
Sap Businessobjects 4.1
Sap Businessobjects Xi 3.1
Sap Businessobjects Xi R3
Sap Businessobjects Edge 4.0
890
VMScore
CVE-2015-1311
The Extended Application Services (XS) in SAP HANA allows remote malicious users to inject arbitrary ABAP code via unspecified vectors, aka SAP Note 2098906. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sap Hana Extended Application Services -
890
VMScore
CVE-2014-9387
SAP BusinessObjects Edge 4.1 allows remote malicious users to obtain the SI_PLATFORM_SEARCH_SERVER_LOGON_TOKEN token and gain privileges via a crafted CORBA call, aka SAP Note 2039905.
Sap Businessobjects 4.1
890
VMScore
CVE-2014-8661
The SAP CRM Internet Sales module allows remote malicious users to execute arbitrary commands via unspecified vectors.
Sap Customer Relationship Management Internet Sales -
890
VMScore
CVE-2014-8669
The SAP Promotion Guidelines (CRM-MKT-MPL-TPM-PPG) module for SAP CRM allows remote malicious users to execute arbitrary code via unspecified vectors.
Sap Customer Relationship Management -
890
VMScore
CVE-2013-7095
The XML parser (crm_flex_data) in SAP Customer Relationship Management (CRM) 7.02 EHP 2 has unknown impact and attack vectors related to an XML External Entity (XXE) issue.
Sap Customer Relationship Management 7.02
890
VMScore
CVE-2013-6822
GRMGApp in SAP NetWeaver allows remote malicious users to have unspecified impact and attack vectors, related to an XML External Entity (XXE) issue.
Sap Netweaver -
890
VMScore
CVE-2013-6245
Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise (ASE) prior to 15.0.3 ESD#4.3. 15.5 prior to 15.5 ESD#5.3, and 15.7 prior to 15.7 SP50 or 15.7 SP100 allows remote authenticated users to execute arbitrary code via unspecified vectors.
Sybase Adaptive Server Enterprise
890
VMScore
CVE-2012-1713
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and previous versions, 6 update 32 and previous versions, 5 update 35 and previous versions, 1.4.2_37 and previous versions, and JavaFX 2.1 and previous versions allows remote m...
Oracle Jre
Oracle Jdk
Sun Jdk
Sun Jre
Oracle Javafx
890
VMScore
CVE-2012-0499
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and previous versions, 6 Update 30 and previous versions, 5.0 Update 33 and previous versions, and 1.4.2_35 and previous versions; and JavaFX 2.0.2 and previous versions; allows...
Sun Jre 1.4.2 26
Sun Jre 1.4.2 7
Sun Jre 1.4.2 27
Sun Jre 1.4.2 16
Sun Jre 1.4.2 24
Sun Jre 1.4.2 4
Sun Jre
Sun Jre 1.4.2 2
Sun Jre 1.4.2 19
Sun Jre 1.4.2 25
Sun Jre 1.4.2 13
Sun Jre 1.4.2 31
Sun Jre 1.4.2 21
Sun Jre 1.4.2 23
Sun Jre 1.4.2 18
Sun Jre 1.4.2 14
Sun Jre 1.4.2 8
Sun Jre 1.4.2 29
Sun Jre 1.4.2
Sun Jre 1.4.2 12
Sun Jre 1.4.2 15
Sun Jre 1.4.2 17
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »