Sap Process Integration Vulnerabilidad

Cronología

Versión

7.50	14
7.31	11
7.40	10
7.10	9
7.11	9

Contramedidas

Official Fix	14
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	9

Explotabilidad

High	0
Functional	0
Proof-of-Concept	1
Unproven	0
Not Defined	22

Vector de acceso

Not Defined	0
Physical	0
Local	0
Adjacent	0
Network	23

Autenticación

Not Defined	0
High	3
Low	7
None	13

La interacción del usuario

Not Defined	0
Required	5
None	18

CVSSv3 Base

≤1	0
≤2	0
≤3	1
≤4	1
≤5	4
≤6	7
≤7	8
≤8	0
≤9	2
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	1
≤4	1
≤5	4
≤6	8
≤7	7
≤8	0
≤9	2
≤10	0

VulDB

≤1	0
≤2	0
≤3	2
≤4	1
≤5	7
≤6	2
≤7	4
≤8	7
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	6
≤6	3
≤7	2
≤8	3
≤9	1
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	1
≤7	4
≤8	0
≤9	0
≤10	2

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	0
<2k	0
<5k	2
<10k	9
<25k	11
<50k	1
<100k	0
≥100k	0

Explotar hoy

<1k	8
<2k	5
<5k	5
<10k	5
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

Affected Versions (52): 1.0, 7.0, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.7, 7.8, 7.9, 7.10, 7.11, 7.12, 7.13, 7.14, 7.15, 7.16, 7.17, 7.18, 7.19, 7.20, 7.21, 7.22, 7.23, 7.24, 7.25, 7.26, 7.27, 7.28, 7.29, 7.30, 7.31, 7.32, 7.33, 7.34, 7.35, 7.36, 7.37, 7.38, 7.39, 7.40, 7.41, 7.42, 7.43, 7.44, 7.45, 7.46, 7.47, 7.48, 7.49, 7.50

Link to Product Website: https://www.sap.com

Tipo de software: Solution Stack Software

Fecha de publicación	Base	Temp	Vulnerabilidad	0day	Hoy	Exp	Con	CTI	CVE
2024-03-12	5.3	5.2	SAP NetWeaver Process Integration Support Web Pages divulgación de información	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.08	CVE-2024-28163
2023-08-08	5.2	5.1	SAP NetWeaver Process Integration cross site scripting	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.01	CVE-2023-37488
2023-07-11	6.9	6.8	SAP NetWeaver Process Integration Runtime Workbench SAP_XITOOL autenticación débil	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-35873
2023-07-11	6.9	6.8	SAP NetWeaver Process Integration Message Display Tool autenticación débil	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-35872
2022-12-13	8.3	8.2	SAP NetWeaver Process Integration JNDI autenticación débil	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-41271
2022-12-13	8.6	8.5	SAP NetWeaver Process Integration JNDI autenticación débil	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-41272
2021-05-12	2.7	2.7	SAP Process Integration Integration Builder Framework denegación de servicio	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-27618
2021-05-12	4.3	4.3	SAP Process Integration Integration Builder Framework denegación de servicio	$0-$5k	$5k-$25k	Not Defined	Not Defined	0.00	CVE-2021-27617
2020-11-11	3.8	3.6	SAP Process Integration PGP Module Business-to-Business Add On divulgación de información	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-26814
2020-01-14	5.6	5.6	SAP Process Integration PI Rest Adapter cross site scripting	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.04	CVE-2020-6305

13 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 13 results.

más entradas por Sap

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!