Sap Abap Vulnerabilidad

Cronología

El año pasado

Versión

74051
75051
73144
75143
75243

Contramedidas

Official Fix68
Temporary Fix0
Workaround0
Unavailable0
Not Defined50

Explotabilidad

High1
Functional0
Proof-of-Concept1
Unproven2
Not Defined114

Vector de acceso

Not Defined0
Physical1
Local1
Adjacent17
Network99

Autenticación

Not Defined0
High15
Low53
None50

La interacción del usuario

Not Defined0
Required30
None88

C3BM Index

El año pasado

CVSSv3 Base

≤10
≤20
≤31
≤48
≤529
≤641
≤713
≤819
≤97
≤100

CVSSv3 Temp

≤10
≤20
≤31
≤410
≤529
≤642
≤712
≤818
≤96
≤100

VulDB

≤10
≤20
≤34
≤416
≤543
≤624
≤712
≤818
≤91
≤100

NVD

≤10
≤20
≤31
≤40
≤56
≤68
≤717
≤85
≤97
≤106

CNA

≤10
≤20
≤30
≤41
≤57
≤66
≤713
≤81
≤94
≤103

Proveedor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explotar día 0

<1k1
<2k0
<5k12
<10k66
<25k38
<50k1
<100k0
≥100k0

Explotar hoy

<1k42
<2k23
<5k24
<10k27
<25k2
<50k0
<100k0
≥100k0

Explotar el volumen del mercado

El año pasado

🔴 CTI Ocupaciones

Affected Versions (122): 5.555.38, 7.0, 7.00, 7.01, 7.02, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.7, 7.8, 7.9, 7.10, 7.11, 7.12, 7.13, 7.14, 7.15, 7.16, 7.17, 7.18, 7.19, 7.20, 7.21, 7.21EXT, 7.22, 7.22EXT, 7.23, 7.24, 7.25, 7.26, 7.27, 7.28, 7.29, 7.30, 7.31, 7.40, 7.49, 7.50, 7.51, 7.52, 7.53, 7.54, 7.70, 7.70 BYD, 7.70 PI, 7.73, 7.74, 7.75, 7.77, 7.81, 7.82, 7.83, 7.84, 7.85, 7.86, 7.87, 7.88, 7.89, 7.91, 7.92, 7.93, 7.94, 8.04, 75A, 75B, 75C, 75D, 75E, 600, 602, 603, 604, 605, 606, 617, 618, 700, 701, 702, 710, 711, 712, 713, 714, 720, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, 758, 782, 784, 786, 787, 789, 790, 791, 793, 794, 795, 800, 802, 803, 804, 805, 806, 807, <=700, SAP_BASIS 700, SAP_BASIS731, SAP_BASIS740, SAP_BASIS750

Link to Product Website: https://www.sap.com

Tipo de software: Solution Stack Software

Fecha de publicaciónBaseTempVulnerabilidad0dayHoyExpConCTICVE
2024-03-124.44.4SAP NetWeaver AS ABAP WebGUI cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-27902
2024-03-124.34.2SAP ABAP Platform Privacy Setting escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-27900
2024-02-135.35.2SAP NetWeaver Application Server ABAP Kernel divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2024-24740
2024-01-094.34.3SAP NetWeaver ABAP Application Server and ABAP Platform cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-21738
2023-12-125.95.8SAP NetWeaver Application Server ABAP and ABAP Platform GUI escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-49581
2023-11-145.35.2SAP NetWeaver Application Server ABAP/ABAP Platform Restrictions divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-41366
2023-09-128.58.4SAP CommonCryptoLib escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.01CVE-2023-40309
2023-09-124.84.8SAP NetWeaver AS ABAP Unified Rendering cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-40624
2023-08-084.74.7SAP NetWeaver Application Server ABAP/ABAP Platform escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-37492
2023-07-118.48.3SAP NetWeaver ABAP Function Module escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-36922
2023-07-115.55.4SAP NetWeaver Application Server ABAP/ABAP Platform autenticación débil$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-35874
2023-06-135.25.1SAP CRM ABAP Grantor Management cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-33986
2023-04-114.94.8SAP ABAP Platform/SAP Web Dispatcher IP Netmask divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-29108
2023-04-115.04.9SAP NetWeaver AS for ABAP Business Server Pages denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-29185
2023-04-115.45.3SAP NetWeaver AS for ABAP and ABAP Platform denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-28763
2023-03-144.84.8SAP ABAP autenticación débil$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-25615
2023-03-148.88.6SAP Solution Manager/ABAP Managed Systems escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-27893
2023-03-147.47.3SAP NetWeaver AS for ABAP and ABAP Platform directory traversal$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-27501
2023-03-147.57.4SAP NetWeaver Application Server for ABAP and ABAP Platform directory traversal$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-27269
2023-03-146.86.7SAP NetWeaver AS for ABAP and ABAP Platform escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26459
2023-03-145.45.3SAP NetWeaver Application Server for ABAP and ABAP Platform denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-27270
2023-03-145.45.3SAP NetWeaver Application Server for ABAP and ABAP Platform Error denegación de servicio$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-25618
2023-02-146.26.0SAP NetWeaver Application Server for ABAP and ABAP Platform Link Redirect$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-23853
2023-02-145.75.6SAP NetWeaver Application Server ABAP Link Redirect$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-23860
2023-02-145.25.1SAP NetWeaver Application Server ABAP Link cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-23859

93 no se muestran más entradas

más entradas por Sap

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!