Advisories for SAP_BASIS 731
Below you can find all Security Advisories that related to your search term.
Note | Component | Description | CVSS | Severity | Patchday | Initially released on | Category | Affected system type | Valid for |
---|---|---|---|---|---|---|---|---|---|
3002517 | BC-SRV-RM | [CVE-2021-21473] Missing Authorization check in SAP NetWeaver AS ABAP and ABAP Platform | 6.3 | Medium | 2021-08 | 2021/06/08 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 |
2884910 | BC-SRV-SSF | [CVE-2020-6205] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP Business Server Pages (Smart Forms) | 6.1 | Medium | 2020-03 | 2020/03/10 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 |
3123196 | BC-INS-TC-CNT | [CVE-2021-44235] Code Injection vulnerability in utility class for SAP NetWeaver AS ABAP | 8.4 | High | 2021-12 | 2021/12/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 |
3128473 | BC-MID-RFC | [CVE-2022-22545] Information Disclosure vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform | 4.9 | Medium | 2022-02 | 2022/02/08 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 |
3140587 | WP-WSR | [CVE-2022-22540] SQL Injection vulnerability in SAP NetWeaver AS ABAP (Workplace Server) | 7.1 | High | 2022-02 | 2022/02/08 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 787 |
3112710 | BC-CCM-MON | [CVE-2021-42067] Information Disclosure vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform | 4.3 | Medium | 2022-01 | 2022/01/11 | Program error | ABAP | SAP_BASIS 701-702 SAP_BASIS 711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 786 |
3124994 | BC-CCM-PRN-PC | [CVE-2022-22534] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver | 4.7 | Medium | 2022-02 | 2022/02/08 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 |
3107196 | BC-WD-ABA | Cross-Site Request Forgery (CSRF) vulnerability in SAP NetWeaver AS ABAP within Web Dynpro ABAP | 4.3 | Medium | 2022-02 | 2022/01/25 | Program error | ABAP | SAP_BASIS 701-702 SAP_BASIS 731 SAP_BASIS 786-787 SAP_BASIS 804 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
3392547 | BC-CCM-MON-ORA | [CVE-2023-49581] SQL Injection vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform | 4.1 | Medium | 2023-12 | 2023/12/12 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 |
3165801 | BC-ABA-LI | [CVE-2022-29611] Missing Authorization check in SAP NetWeaver Application Server for ABAP and ABAP Platform | 6.5 | Medium | 2022-05 | 2022/05/10 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 787-788 |
2938831 | BC-DWB-SEM | SESS: Duplicate AU3 entries in the Security Audit Log | 6.0 | Medium | 2020-07 | 2020/06/23 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 |
3145997 | BC-ABA-SC | [CVE-2022-26102] Missing authorization check in SAP NetWeaver Application Server for ABAP | 5.4 | Medium | 2022-03 | 2022/03/08 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 |
3097887 | BC-CTS-ORG | [CVE-2021-38178] Improper Authorization in SAP NetWeaver AS ABAP and ABAP Platform | 9.1 | Hot News | 2021-10 | 2021/10/12 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 |
3251202 | BC-MID-ICF | [CVE-2022-41215] URL Redirection vulnerability in SAP NetWeaver ABAP Server and ABAP Platform | 4.7 | Medium | 2022-11 | 2022/11/08 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 SAP_BASIS 789-790 |
2822074 | BC-DWB-TOO-BOB | Missing Authorization check in SAP NetWeaver (ABAP Server) | 6.6 | Medium | 2020-02 | 2020/01/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 |
3294595 | BC-CCM-PRN | [CVE-2023-27269] Directory Traversal vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform | 9.6 | Hot News | 2023-03 | 2023/03/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 SAP_BASIS 791 |
3256571 | BC-CTS-TMS | [CVE-2022-41214] Multiple vulnerabilities in SAP NetWeaver Application Server ABAP and ABAP Platform | 8.7 | High | 2022-11 | 2022/11/08 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 SAP_BASIS 789-790 SAP_BASIS 804 |
3303060 | BC-BSP | [CVE-2023-29185] Denial of Service (DOS) in SAP NetWeaver AS for ABAP (Business Server Pages) | 5.3 | Medium | 2023-04 | 2023/04/11 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 |
3456952 | BC-MID-ICF | [CVE-2024-39599] Protection Mechanism Failure in SAP NetWeaver Application Server for ABAP and ABAP Platform | 4.7 | Medium | 2024-07 | 2024/07/09 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 SAP_BASIS 795-796 |
3258950 | BC-BSP | Update 1 to Security Note 2872782 - [CVE-2020-6215] URL Redirection vulnerability in SAP NetWeaver AS ABAP (BSP Test Application) | 6.1 | Medium | 2022-12 | 2022/12/13 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 |
3268172 | BC-DB-HDB-POR | [CVE-2022-41264] Code Injection vulnerability in SAP BASIS | 8.8 | High | 2022-12 | 2022/12/13 | Program error | ABAP | SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 SAP_BASIS 789-791 |
3150454 | BC-MID-RFC | Information Disclosure vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform | 4.9 | Medium | 2022-07 | 2022/07/12 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 |
3387737 | BC-SRV-COM | [CVE-2024-21738] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver ABAP Application Server and ABAP Platform | 4.1 | Medium | 2024-01 | 2024/01/09 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 SAP_BASIS 793-794 |
3283283 | BC-ABA-LA | [CVE-2023-0013] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform | 6.1 | Medium | 2023-01 | 2023/01/10 | Program error | ABAP | SAP_BASIS 702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 |
3089413 | BC-MID-RFC | [CVE-2023-0014] Capture-replay vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform | 9.0 | Hot News | 2023-01 | 2023/01/10 | Program error | Kernel / ABAP | KERNEL 7.22 KERNEL 7.53 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.89 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.53 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 |
3287291 | BC-DWB-TOO-ABA | [CVE-2023-23854] Missing Authorization check in SAP NetWeaver AS ABAP and ABAP Platform | 3.8 | Low | 2023-02 | 2023/02/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-752 |
3274585 | BC-BSP | [CVE-2023-25614] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP (BSP Framework) | 6.1 | Medium | 2023-02 | 2023/02/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 |
3198137 | BC-MID-ICF | Update 1 to Security Note 3165333 - [CVE-2022-28215] URL Redirection vulnerability in SAP NetWeaver ABAP Server and ABAP Platform | 4.7 | Medium | 2022-09 | 2022/09/13 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 SAP_BASIS 789 |
3269151 | BC-BSP | [CVE-2023-24521] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP (BSP Framework) | 6.1 | Medium | 2023-02 | 2023/02/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 |
3396109 | BC-FES-BUS | [CVE-2024-22128] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Business Client for HTML | 4.7 | Medium | 2024-02 | 2024/02/13 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
3269118 | BC-BSP | [CVE-2023-24522] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP (BSP Framework) | 6.1 | Medium | 2023-02 | 2023/02/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 |
3483993 | BC-BMT-WFM | [CVE-2024-34689] Prerequisite for Security Note 3458789 | 5.0 | Medium | 2024-07 | 2024/07/09 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 |
2872752 | BC-BSP | [CVE-2020-6213]Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP(Business Server Pages Test Application SBSPEXT_PHTMLB) | 6.1 | Medium | 2020-04 | 2020/04/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 |
2872782 | BC-BSP | [CVE-2020-6215] URL Redirection vulnerability in SAP NetWeaver AS ABAP – Business Server Pages Test Application IT00 | 6.1 | Medium | 2020-04 | 2020/04/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 |
3325642 | BC-CTS-TMS-CTR | [CVE-2023-32114] Denial of Service in SAP NetWeaver (Change and Transport System) | 2.7 | Low | 2023-06 | 2023/06/13 | Program error | ABAP | SAP_BASIS 702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 |
3485805 | BC-BMT-WFM | [CVE-2024-34689] Allowlisting of callback-URLs in SAP Business Workflow (WebFlow Services) | 5.0 | Medium | 2024-07 | 2024/07/09 | Upgrade information | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 |
3271227 | BC-MID-ICF | [CVE-2023-23853] URL Redirection vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform | 6.1 | Medium | 2023-02 | 2023/02/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 SAP_BASIS 789-790 SAP_BASIS 804 |
3294954 | BC-CTS-TMS | [CVE-2023-27501] Directory Traversal vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform | 8.7 | High | 2023-03 | 2023/03/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 SAP_BASIS 791 |
2872545 | BC-BSP | [CVE-2020-6217] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP (Business Server Pages Test Application IT05) | 6.1 | Medium | 2020-04 | 2020/04/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 |
3296328 | BC-MID-ICF | [CVE-2023-27270] Denial of Service (DoS) in SAP NetWeaver AS for ABAP and ABAP Platform | 6.5 | Medium | 2023-03 | 2023/03/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 SAP_BASIS 791 |
3302162 | BC-DOC-RIT | [CVE-2023-27500] Directory Traversal vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform | 9.6 | Hot News | 2023-03 | 2023/03/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 |
2418823 | BC-CCM-MON-ORA | Update 1 to Note 2319506 | 7.2 | High | 2017-03 | 2017/03/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-751 |
2912939 | BC-ABA-SC | [CVE-2020-6275] Server Side Request Forgery vulnerability in SAP NetWeaver AS ABAP | 7.6 | High | 2020-06 | 2020/06/09 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 |
3296346 | BC-MID-ICF | [CVE-2023-26459] Multiple vulnerabilities in SAP NetWeaver AS for ABAP and ABAP Platform | 7.4 | High | 2023-03 | 2023/03/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 SAP_BASIS 791 |
2091403 | BC-MID-ICF | Directory traversal in BC-MID-ICF | 6.3 | Medium | 2020-07 | 2015/08/11 | Program error | ABAP | SAP_BASIS 640 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 760 |
3274920 | BC-CCM-PRN-PC | [CVE-2023-0021] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver | 6.1 | Medium | 2023-03 | 2023/03/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 |
2927373 | BC-CCM-MON-OS | [CVE-2020-6280] Information Disclosure in SAP NetWeaver (ABAP Server) and ABAP Platform | 2.7 | Low | 2020-07 | 2020/07/14 | Program error | ABAP | SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 |
2944988 | BC-ESI-WS-ABA-CFG | [CVE-2020-6310] Information Disclosure in SAP NetWeaver (ABAP Server) and ABAP Platform | 4.3 | Medium | 2020-08 | 2020/08/11 | Program error | ABAP | SAP_BASIS 702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 |
2941667 | BC-ABA-SC | [CVE-2020-6296] Code Injection Vulnerability in SAP NetWeaver (ABAP) and ABAP Platform | 8.3 | High | 2020-08 | 2020/08/11 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 |
3494349 | BC-SRV-LIM | [CVE-2024-41734] Missing Authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform | 4.3 | Medium | 2024-08 | 2024/08/13 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 SAP_BASIS 912 |
3348000 | BC-CCM-CNF-PFL | [CVE-2023-37492] Missing Authorization check in SAP NetWeaver AS ABAP and ABAP Platform | 4.9 | Medium | 2023-08 | 2023/08/08 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 SAP_BASIS 793 SAP_BASIS 804 |
3458789 | BC-BMT-WFM | [CVE-2024-34689] Server-Side Request Forgery in SAP Business Workflow (WebFlow Services) | 5.0 | Medium | 2024-07 | 2024/07/09 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 |
3323163 | BC-WD-UR | [CVE-2023-40624] Code Injection vulnerability in SAP NetWeaver AS ABAP (applications based on Unified Rendering) | 5.5 | Medium | 2023-09 | 2023/09/12 | Program error | ABAP | SAP_BASIS 702 SAP_BASIS 731 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
3448445 | BC-SRV-GBT-GOS | [CVE-2024-34687] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application server for ABAP and ABAP Platform | 6.5 | Medium | 2024-05 | 2024/05/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 SAP_BASIS 795-796 |
2747062 | BC-WD-ABA | This note has been re-released without changes. - Cross-Site Request Forgery (CSRF) vulnerability in SAP Web Dynpro ABAP | 5.0 | Medium | 2020-05 | 2020/05/12 | Program error | ABAP | SAP_UI 750 SAP_UI 751 SAP_UI 752 SAP_UI 753 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 804 SAP_BASIS 776 |
3448171 | BC-SRV-KPR-CMS | [CVE-2024-33006] File upload vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform | 9.6 | Hot News | 2024-05 | 2024/05/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 |
3468102 | BC-FES-BUS-RUN | [CVE-2024-41732] Improper Access Control in SAP Netweaver Application Server ABAP | 4.7 | Medium | 2024-08 | 2024/08/13 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 912 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
2863397 | BC-UPG-NA | [CVE-2020-6307] Missing Authorization Check in Automated Note Search Tool (SAP_BASIS) | 4.3 | Medium | 2020-01 | 2020/01/14 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 SAP_BASIS DEV |
3488039 | BC-DWB-SEM | [Multiple CVEs] Multiple vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform | 5.4 | Medium | 2024-09 | 2024/09/10 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 SAP_BASIS 912 |
3507252 | BC-ABA-LA | [CVE-2024-44114] Missing Authorization check in SAP NetWeaver Application Server for ABAP and ABAP Platform | 2.0 | Low | 2024-09 | 2024/09/10 | Program error | ABAP | SAP_BASIS 702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 SAP_BASIS 912 |
3496410 | BC-DWB-TOO-ABA | [CVE-2024-41728] Missing Authorization check in SAP NetWeaver Application Server for ABAP and ABAP Platform | 2.7 | Low | 2024-09 | 2024/09/10 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 SAP_BASIS 912 |
2974582 | BC-WD-ABA | [CVE-2021-21478] Reverse Tabnabbing vulnerability in SAP NetWeaver Application Server ABAP (Applications based on Web Dynpro ABAP) | 4.7 | Medium | 2021-02 | 2021/02/09 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 804 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 |
2878935 | BC-BSP | [CVE-2020-6246] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP ( Business Server Pages Test Application SBSPEXT_TABLE) | 6.1 | Medium | 2020-06 | 2020/06/09 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 |
3454858 | BC-SRV-DX-DXW | [CVE-2024-37180] Information Disclosure vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform | 4.1 | Medium | 2024-10 | 2024/07/09 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-758 |
2142551 | BC-WD-ABA | Whitelist service for Clickjacking Framing Protection in AS ABAP | 4.3 | Medium | 2020-01 | 2016/07/12 | Program error | ABAP | SAP_UI 740 SAP_UI 750 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 |
2319506 | BC-CCM-MON-ORA | SQL injection vulnerability in Database Monitors for Oracle | 7.2 | High | 2016-08 | 2016/08/09 | Program error | Oracle | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750 |
3028729 | BC-SRV-PMI | [CVE-2021-27603] Denial of Service (DoS) in SAP NetWeaver AS of ABAP | 6.5 | Medium | 2021-04 | 2021/04/13 | Performance | ABAP | SAP_BASIS 702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-752 |
2114798 | BC-FES-ITS | Unauthorized use of application functions in SAP GUI for HTML | 6.3 | Medium | 2021-05 | 2021/04/27 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-730 SAP_BASIS 731 SAP_BASIS 740 |
3046610 | BC-CTS-ORG | [CVE-2021-27611] Code Injection vulnerability in SAP NetWeaver AS ABAP | 8.2 | High | 2021-05 | 2021/05/11 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 |
3025604 | BC-WD-ABA | [CVE-2021-33664] Cross-Site Scripting (XSS) vulnerability within SAP NetWeaver AS ABAP (Applications based on Web Dynpro ABAP) | 5.4 | Medium | 2021-06 | 2021/06/08 | Program error | ABAP | SAP_BASIS 702 SAP_BASIS 731 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 |
2948239 | BC-BSP | [CVE-2020-6324] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP (BSP Test Application) | 6.1 | Medium | 2020-09 | 2020/09/08 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 |
3044754 | BC-MID-RFC-BG | [CVE-2021-33677] Information Disclosure in SAP NetWeaver AS ABAP and ABAP Platform | 6.5 | Medium | 2021-07 | 2021/07/13 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 SAP_BASIS 784 SAP_BASIS 804 SAP_BASIS DEV |
3007182 | BC-MID-RFC | [CVE-2021-27610] Improper Authentication in SAP NetWeaver ABAP Server and ABAP Platform | 9.0 | Hot News | 2021-07 | 2021/06/08 | Program error | ABAP | KERNEL 7.21-7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.73 KERNEL 7.77 KERNEL 7.81 KERNEL 7.84 KERNEL 8.04 KRNL32NUC 7.21 KRNL32NUC 7.21EXT KRNL32NUC 7.22 KRNL32NUC 7.22EXT KRNL32UC 7.21 KRNL32UC 7.21EXT KRNL32UC 7.22 KRNL32UC 7.22EXT KRNL64NUC 7.21 KRNL64NUC 7.21EXT KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.21 KRNL64UC 7.21EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 KRNL64UC 7.73 KRNL64UC 8.04 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 SAP_BASIS 783 SAP_BASIS 804 |
2963137 | BC-MUS-POW | [CVE-2020-6371] Information disclosure in SAP NetWeaver AS ABAP via the POWL Test Feeder endpoint | 4.3 | Medium | 2020-10 | 2020/10/13 | Program error | ABAP | SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 |
3080710 | BC-CST-IC | [CVE-2021-38181] Denial of service (DOS) in SAP NetWeaver AS ABAP and ABAP Platform | 6.5 | Medium | 2021-10 | 2021/10/12 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 |
3089438 | BC-DWB-SEM | Missing transaction start (AU3) entries in the Security Audit Log | 9.1 | Hot News | 2021-10 | 2021/09/20 | Program error | ABAP | SAP_BASIS 700 - 702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750 - 756 |
3087254 | BC-MID-ICF-LGN | [CVE-2021-40496] Improper Access Control in SAP NetWeaver AS ABAP and ABAP Platform | 4.3 | Medium | 2021-10 | 2021/10/12 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 785 SAP_BASIS 804 |
3105728 | BC-DWB-TOO | [CVE-2021-40504] Leverage of Permission in SAP NetWeaver Application Server for ABAP and ABAP Platform | 4.9 | Medium | 2021-11 | 2021/11/09 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 |