Sap Netweaver Vulnérabilités

Chronologie

L'année dernière

Version

7.50103
7.3087
7.4081
7.3180
7.2058

Contre-mesures

Official Fix218
Temporary Fix0
Workaround2
Unavailable1
Not Defined187

Exploitabilité

High9
Functional0
Proof-of-Concept62
Unproven20
Not Defined317

Vecteur d'accès

Not Defined0
Physical1
Local4
Adjacent27
Network376

Authentification

Not Defined0
High45
Low118
None245

Interaction de l'utilisateur

Not Defined0
Required108
None300

C3BM Index

L'année dernière

CVSSv3 Base

≤10
≤20
≤33
≤423
≤578
≤6127
≤766
≤861
≤923
≤1027

CVSSv3 Temp

≤10
≤20
≤33
≤431
≤596
≤6117
≤763
≤854
≤936
≤108

VulDB

≤10
≤21
≤310
≤441
≤5106
≤688
≤761
≤869
≤96
≤1026

NVD

≤10
≤20
≤31
≤41
≤519
≤624
≤745
≤832
≤918
≤1030

CNA

≤10
≤20
≤31
≤42
≤510
≤622
≤727
≤81
≤910
≤1013

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤101

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k1
<2k1
<5k27
<10k164
<25k184
<50k30
<100k1
≥100k0

Exploiter aujourd'hui

<1k195
<2k42
<5k91
<10k64
<25k16
<50k0
<100k0
≥100k0

Exploiter le volume du marché

L'année dernière

🔴 CTI Activités

Affected Versions (194): 2.0 SP5, 3.0, 4.0, 5.555.38, 6.0, 6.1, 6.2, 6.3, 6.4, 6.5, 6.6, 6.7, 6.8, 6.9, 6.10, 6.11, 6.12, 6.13, 6.14, 6.15, 6.16, 6.17, 6.18, 6.19, 6.20, 6.21, 6.22, 6.23, 6.24, 6.25, 6.26, 6.27, 6.28, 6.29, 6.30, 6.31, 6.32, 6.33, 6.34, 6.35, 6.36, 6.37, 6.38, 6.39, 6.40, 7.0, 7.0 EHP2, 7.0.573, 7.00, 7.01, 7.02, 7.03, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.7, 7.8, 7.9, 7.10, 7.11, 7.12, 7.13, 7.14, 7.15, 7.16, 7.17, 7.18, 7.19, 7.20, 7.21, 7.21EXT, 7.22, 7.22EXT, 7.23, 7.24, 7.25, 7.26, 7.27, 7.28, 7.29, 7.30, 7.30 (Basis 720 SP 0, 7.31, 7.31. 7.4, 7.31.201109172004, 7.32, 7.33, 7.34, 7.35, 7.36, 7.37, 7.38, 7.39, 7.40, 7.40 SP12, 7.41, 7.42, 7.43, 7.44, 7.45, 7.46, 7.47, 7.48, 7.49, 7.50, 7.50The, 7.51, 7.52, 7.53, 7.54, 7.70, 7.70 BYD, 7.70 PI, 7.73, 7.74, 7.75, 7.77, 7.81, 7.82, 7.83, 7.84, 7.85, 7.86, 7.87, 7.88, 7.89, 7.91, 7.92, 7.93, 7.94, 8.04, 75A, 75B, 75C, 75D, 75E, 600, 602, 603, 604, 605, 606, 617, 618, 700, 701, 702, 707, 710, 710.750, 711, 720, 730, 731, 737, 740, 747, 750, 751, 752, 753, 754, 755, 756, 757, 758, 782, 784, 786, 787, 789, 790, 791, 793, 794, 800, 802, 803, 804, 805, 806, 807, 2004s, 7400.12.21.30308, <=700, Kernel 720 patch 68), SAP_BASIS 700, SAP_BASIS731, SAP_BASIS740, SAP_BASIS750, Sp8

Link to Product Website: https://www.sap.com

Type de logiciel: Solution Stack Software

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
09/04/20246.56.3SAP NetWeaver AS ABAP and ABAP Platform dénie de service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-30218
09/04/20247.57.4SAP NetWeaver AS Java User Management Engine User Admin Application elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.07CVE-2024-27899
09/04/20245.35.2SAP NetWeaver elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-27898
12/03/20245.35.2SAP NetWeaver Enterprise Portal divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-25645
12/03/20244.44.4SAP NetWeaver AS ABAP WebGUI cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-27902
12/03/20245.35.2SAP NetWeaver WSRM divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2024-25644
12/03/20248.18.0SAP NetWeaver AS Java Administrator Log Viewer Plug-In elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.05CVE-2024-22127
12/03/20245.35.2SAP NetWeaver Process Integration Support Web Pages divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.08CVE-2024-28163
13/02/20244.54.4SAP NetWeaver Business Client for HTML cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2024-22128
13/02/20246.56.4SAP NetWeaver AS Java User Admin Application cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2024-22126
13/02/20245.35.2SAP NetWeaver Application Server ABAP Kernel divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.08CVE-2024-24740
13/02/20246.96.8SAP NetWeaver AS Java Guided Procedures XML External Entity$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2024-24743
09/01/20244.54.5SAP NetWeaver Internet Communication Manager divulgation de l'information$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2024-22124
09/01/20244.34.3SAP NetWeaver ABAP Application Server and ABAP Platform cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-21738
12/12/20235.95.8SAP NetWeaver Application Server ABAP and ABAP Platform GUI elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-49581
14/11/20234.54.4SAP NetWeaver AS Java Logon Application divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-42480
14/11/20235.35.2SAP NetWeaver Application Server ABAP/ABAP Platform Restrictions divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-41366
10/10/20236.96.8SAP NetWeaver AS Java GRMG Heartbeat Application elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-42477
12/09/20238.58.4SAP CommonCryptoLib elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-40309
12/09/20235.35.2SAP NetWeaver Guided Procedures authentification faible$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-41367
12/09/20234.84.8SAP NetWeaver AS ABAP Unified Rendering cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-40624
08/08/20235.25.1SAP NetWeaver Process Integration cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.01CVE-2023-37488
08/08/20234.74.7SAP NetWeaver Application Server ABAP/ABAP Platform elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-37492
11/07/20237.27.1SAP NetWeaver BI CONT Add-On directory traversal$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-33989
11/07/20235.95.8SAP NetWeaver AS for Java Request elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-31405

383 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 383 results.

plus d'entrées par Sap

PrécédentAperçuSuivant

Do you need the next level of professionalism?

Upgrade your account now!