SAP Security Advisory version SAP_UI 754 - SAP Security Notes

 

Advisories for SAP_UI 754

Below you can find all Security Advisories that related to your search term.

Note Component Description CVSS Severity Patchday Initially released on Category Affected system type Valid for
3051005 CA-FLP-ABA Cross-Site Scripting (XSS) Vulnerability in SAP Fiori Launchpad 3.5 Low 2021-12 2021/12/14 Program error SAP UI5 SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 UI_700 200
3163703 CA-UI5-COR-FND Multiple Vulnerabilities in URI.js bundled with SAPUI5 6.1 Medium 2022-04 2022/04/12 Program error ABAP SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 UI_700 200
3146336 CA-UI2-THD [CVE-2022-29610] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP 5.4 Medium 2022-05 2022/05/10 Program error ABAP SAP_BASIS 787-788 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756
3126557 CA-GTF-VBZ [CVE-2022-28770] Cross-Site Scripting (XSS) vulnerability in SAPUI5 (vbm library) 6.1 Medium 2022-04 2022/04/12 Program error ABAP SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756
3107196 BC-WD-ABA Cross-Site Request Forgery (CSRF) vulnerability in SAP NetWeaver AS ABAP within Web Dynpro ABAP 4.3 Medium 2022-02 2022/01/25 Program error ABAP SAP_BASIS 701-702 SAP_BASIS 731 SAP_BASIS 786-787 SAP_BASIS 804 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756
3143161 CA-UI5-FL-LRP Missing Authorization check for UI5 flexibility key user functionality 4.3 Medium 2022-05 2022/05/10 Program error ABAP SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756
2864462 CA-FLP-FE-COR [CVE-2020-6210] Cross-Site Scripting (XSS) vulnerability in SAP Fiori Launchpad 4.7 Medium 2020-03 2020/03/10 Program error ABAP SAP_UI 753 SAP_UI 754 SAP_BASIS 779
3149805 CA-FLP-FE-COR [CVE-2022-26101] Cross-Site Scripting (XSS) vulnerability in SAP Fiori launchpad 8.1 High 2022-03 2022/03/08 Program error ABAP SAP_BASIS 787 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756
3218159 CA-FLP-FE-COR Insufficient Session Expiration in Central Fiori Launchpad 6.1 Medium 2022-11 2022/11/08 Program error SAP UI5 SAP Fiori SAP_UI 754 SAP_UI 755
3249990 CA-UI5-VTK-VIT [CVE-2021-20223] Multiple Vulnerabilities in SQlite bundled with SAPUI5 7.5 High 2022-11 2022/11/08 Program error ABAP, Java SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 UISAPUI5_STANDALONE 1000 UISAPUI5_STANDALONE 600 UISAPUI5_STANDALONE 700 UISAPUI5_STANDALONE 800 UISAPUI5_STANDALONE 900
3326210 CA-UI5-CTR-BAL [CVE-2023-30743] Improper Neutralization of Input in SAPUI5 7.1 High 2023-05 2023/05/09 Program error ABAP SAP_UI 750 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 UI_700 200
2843016 CA-UI5-DLV [CVE-2019-0388] Content spoofing vulnerability in UI5 HTTP Handler 4.3 Medium 2020-01 2019/11/12 Program error ABAP SAP_UI 750 SAP_UI 751 SAP_UI 752 SAP_UI 753 SAP_UI 754 UI_700 200
3396109 BC-FES-BUS [CVE-2024-22128] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Business Client for HTML 4.7 Medium 2024-02 2024/02/13 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 731 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758
3324285 CA-UI5-COR [CVE-2023-33991] Stored Cross-Site Scripting vulnerability in SAP UI5 (Variant Management) 8.2 High 2023-06 2023/06/13 Program error SAP UI5 SAP_UI 750 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 UI_700 200
2941170 CA-UI5-COR Cross-Site Scripting (XSS) vulnerabilities in modified jQuery bundled with SAPUI5 6.1 Medium 2020-08 2020/08/11 Program error SAP GUI / Frontend UISAPUI5_JAVA 7.50 SAP_UI 750 SAP_UI 751 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 UI_700 200
3149794 CA-UI5-COR Cross-Site Scripting (XSS) vulnerabilities in jQuery-UI library bundled with SAPUI5 6.1 Medium 2023-08 2023/08/08 Program error SAP UI5 SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 UI_700 200
3323163 BC-WD-UR [CVE-2023-40624] Code Injection vulnerability in SAP NetWeaver AS ABAP (applications based on Unified Rendering) 5.5 Medium 2023-09 2023/09/12 Program error ABAP SAP_BASIS 702 SAP_BASIS 731 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758
3446076 CA-UI5-SC [CVE-2024-33007] Client-side script execution vulnerability in SAP UI5(PDFViewer) 3.5 Low 2024-05 2024/05/14 Program error ABAP SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758
3468102 BC-FES-BUS-RUN [CVE-2024-41732] Improper Access Control in SAP Netweaver Application Server ABAP 4.7 Medium 2024-08 2024/08/13 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 912 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758
3406786 CA-FLP-ABA [CVE-2023-49584] Client-Side Desynchronization vulnerability in SAP Fiori Launchpad 4.3 Medium 2023-12 2023/12/12 Program error SAP UI5 SAP_BASIS 793 SAP_UI 750 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 UI_700 200
3159329 CA-UI5-COR-FND Denial of service (DoS) vulnerability in JSZip library bundled within SAPUI5 5.3 Medium 2023-12 2023/12/12 Program error ABAP SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 UI_700 200
2974582 BC-WD-ABA [CVE-2021-21478] Reverse Tabnabbing vulnerability in SAP NetWeaver Application Server ABAP (Applications based on Web Dynpro ABAP) 4.7 Medium 2021-02 2021/02/09 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 804 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755
2865229 CA-FLP-ABA [CVE-2020-6283] Cross-Site Scripting (XSS) vulnerability in SAP Fiori(Launchpad) 4.8 Medium 2020-09 2020/09/08 Program error SAP UI5 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 UI_700 200
3025604 BC-WD-ABA [CVE-2021-33664] Cross-Site Scripting (XSS) vulnerability within SAP NetWeaver AS ABAP (Applications based on Web Dynpro ABAP) 5.4 Medium 2021-06 2021/06/08 Program error ABAP SAP_BASIS 702 SAP_BASIS 731 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755
2984627 CA-FE-NEW [CVE-2020-26815] Security Vulnerabilities in SAP Fiori Launchpad (NewsTile Application) 8.6 High 2020-11 2020/11/10 Program error ABAP SAP_BASIS 782 SAP_UI 750 SAP_UI 751 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755
3055347 CA-UI5-COR Cross-Site Scripting (XSS) vulnerability in SAPUI5 6.1 Medium 2021-10 2021/10/12 Program error SAP UI5 SAP_UI 750 SAP_UI 753 SAP_UI 754
ABEX logo

SecurityBridge helps in prioritizing SAP patches, updates and the remediation strategies essential for preventing the disruption of vital business systems. We help businesses in making their SAP systems more secure.

SecurityBridge

© Copyright 2024 by SecurityBridge GmbH

v35.0