Advisories for SAP_UI 754
Below you can find all Security Advisories that related to your search term.
Note | Component | Description | CVSS | Severity | Patchday | Initially released on | Category | Affected system type | Valid for |
---|---|---|---|---|---|---|---|---|---|
3051005 | CA-FLP-ABA | Cross-Site Scripting (XSS) Vulnerability in SAP Fiori Launchpad | 3.5 | Low | 2021-12 | 2021/12/14 | Program error | SAP UI5 | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 UI_700 200 |
3163703 | CA-UI5-COR-FND | Multiple Vulnerabilities in URI.js bundled with SAPUI5 | 6.1 | Medium | 2022-04 | 2022/04/12 | Program error | ABAP | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 UI_700 200 |
3146336 | CA-UI2-THD | [CVE-2022-29610] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP | 5.4 | Medium | 2022-05 | 2022/05/10 | Program error | ABAP | SAP_BASIS 787-788 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
3126557 | CA-GTF-VBZ | [CVE-2022-28770] Cross-Site Scripting (XSS) vulnerability in SAPUI5 (vbm library) | 6.1 | Medium | 2022-04 | 2022/04/12 | Program error | ABAP | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
3107196 | BC-WD-ABA | Cross-Site Request Forgery (CSRF) vulnerability in SAP NetWeaver AS ABAP within Web Dynpro ABAP | 4.3 | Medium | 2022-02 | 2022/01/25 | Program error | ABAP | SAP_BASIS 701-702 SAP_BASIS 731 SAP_BASIS 786-787 SAP_BASIS 804 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
3143161 | CA-UI5-FL-LRP | Missing Authorization check for UI5 flexibility key user functionality | 4.3 | Medium | 2022-05 | 2022/05/10 | Program error | ABAP | SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
2864462 | CA-FLP-FE-COR | [CVE-2020-6210] Cross-Site Scripting (XSS) vulnerability in SAP Fiori Launchpad | 4.7 | Medium | 2020-03 | 2020/03/10 | Program error | ABAP | SAP_UI 753 SAP_UI 754 SAP_BASIS 779 |
3149805 | CA-FLP-FE-COR | [CVE-2022-26101] Cross-Site Scripting (XSS) vulnerability in SAP Fiori launchpad | 8.1 | High | 2022-03 | 2022/03/08 | Program error | ABAP | SAP_BASIS 787 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
3218159 | CA-FLP-FE-COR | Insufficient Session Expiration in Central Fiori Launchpad | 6.1 | Medium | 2022-11 | 2022/11/08 | Program error | SAP UI5 SAP Fiori | SAP_UI 754 SAP_UI 755 |
3249990 | CA-UI5-VTK-VIT | [CVE-2021-20223] Multiple Vulnerabilities in SQlite bundled with SAPUI5 | 7.5 | High | 2022-11 | 2022/11/08 | Program error | ABAP, Java | SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 UISAPUI5_STANDALONE 1000 UISAPUI5_STANDALONE 600 UISAPUI5_STANDALONE 700 UISAPUI5_STANDALONE 800 UISAPUI5_STANDALONE 900 |
3326210 | CA-UI5-CTR-BAL | [CVE-2023-30743] Improper Neutralization of Input in SAPUI5 | 7.1 | High | 2023-05 | 2023/05/09 | Program error | ABAP | SAP_UI 750 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 UI_700 200 |
2843016 | CA-UI5-DLV | [CVE-2019-0388] Content spoofing vulnerability in UI5 HTTP Handler | 4.3 | Medium | 2020-01 | 2019/11/12 | Program error | ABAP | SAP_UI 750 SAP_UI 751 SAP_UI 752 SAP_UI 753 SAP_UI 754 UI_700 200 |
3396109 | BC-FES-BUS | [CVE-2024-22128] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Business Client for HTML | 4.7 | Medium | 2024-02 | 2024/02/13 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
3324285 | CA-UI5-COR | [CVE-2023-33991] Stored Cross-Site Scripting vulnerability in SAP UI5 (Variant Management) | 8.2 | High | 2023-06 | 2023/06/13 | Program error | SAP UI5 | SAP_UI 750 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 UI_700 200 |
2941170 | CA-UI5-COR | Cross-Site Scripting (XSS) vulnerabilities in modified jQuery bundled with SAPUI5 | 6.1 | Medium | 2020-08 | 2020/08/11 | Program error | SAP GUI / Frontend | UISAPUI5_JAVA 7.50 SAP_UI 750 SAP_UI 751 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 UI_700 200 |
3149794 | CA-UI5-COR | Cross-Site Scripting (XSS) vulnerabilities in jQuery-UI library bundled with SAPUI5 | 6.1 | Medium | 2023-08 | 2023/08/08 | Program error | SAP UI5 | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 UI_700 200 |
3323163 | BC-WD-UR | [CVE-2023-40624] Code Injection vulnerability in SAP NetWeaver AS ABAP (applications based on Unified Rendering) | 5.5 | Medium | 2023-09 | 2023/09/12 | Program error | ABAP | SAP_BASIS 702 SAP_BASIS 731 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
3446076 | CA-UI5-SC | [CVE-2024-33007] Client-side script execution vulnerability in SAP UI5(PDFViewer) | 3.5 | Low | 2024-05 | 2024/05/14 | Program error | ABAP | SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
3468102 | BC-FES-BUS-RUN | [CVE-2024-41732] Improper Access Control in SAP Netweaver Application Server ABAP | 4.7 | Medium | 2024-08 | 2024/08/13 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 912 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
3406786 | CA-FLP-ABA | [CVE-2023-49584] Client-Side Desynchronization vulnerability in SAP Fiori Launchpad | 4.3 | Medium | 2023-12 | 2023/12/12 | Program error | SAP UI5 | SAP_BASIS 793 SAP_UI 750 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 UI_700 200 |
3159329 | CA-UI5-COR-FND | Denial of service (DoS) vulnerability in JSZip library bundled within SAPUI5 | 5.3 | Medium | 2023-12 | 2023/12/12 | Program error | ABAP | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 UI_700 200 |
2974582 | BC-WD-ABA | [CVE-2021-21478] Reverse Tabnabbing vulnerability in SAP NetWeaver Application Server ABAP (Applications based on Web Dynpro ABAP) | 4.7 | Medium | 2021-02 | 2021/02/09 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 804 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 |
2865229 | CA-FLP-ABA | [CVE-2020-6283] Cross-Site Scripting (XSS) vulnerability in SAP Fiori(Launchpad) | 4.8 | Medium | 2020-09 | 2020/09/08 | Program error | SAP UI5 | SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 UI_700 200 |
3025604 | BC-WD-ABA | [CVE-2021-33664] Cross-Site Scripting (XSS) vulnerability within SAP NetWeaver AS ABAP (Applications based on Web Dynpro ABAP) | 5.4 | Medium | 2021-06 | 2021/06/08 | Program error | ABAP | SAP_BASIS 702 SAP_BASIS 731 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 |
2984627 | CA-FE-NEW | [CVE-2020-26815] Security Vulnerabilities in SAP Fiori Launchpad (NewsTile Application) | 8.6 | High | 2020-11 | 2020/11/10 | Program error | ABAP | SAP_BASIS 782 SAP_UI 750 SAP_UI 751 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 |
3055347 | CA-UI5-COR | Cross-Site Scripting (XSS) vulnerability in SAPUI5 | 6.1 | Medium | 2021-10 | 2021/10/12 | Program error | SAP UI5 | SAP_UI 750 SAP_UI 753 SAP_UI 754 |