Advisories for SAP_UI 756
Below you can find all Security Advisories that related to your search term.
Note | Component | Description | CVSS | Severity | Patchday | Initially released on | Category | Affected system type | Valid for |
---|---|---|---|---|---|---|---|---|---|
3163703 | CA-UI5-COR-FND | Multiple Vulnerabilities in URI.js bundled with SAPUI5 | 6.1 | Medium | 2022-04 | 2022/04/12 | Program error | ABAP | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 UI_700 200 |
3146336 | CA-UI2-THD | [CVE-2022-29610] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP | 5.4 | Medium | 2022-05 | 2022/05/10 | Program error | ABAP | SAP_BASIS 787-788 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
3126557 | CA-GTF-VBZ | [CVE-2022-28770] Cross-Site Scripting (XSS) vulnerability in SAPUI5 (vbm library) | 6.1 | Medium | 2022-04 | 2022/04/12 | Program error | ABAP | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
3107196 | BC-WD-ABA | Cross-Site Request Forgery (CSRF) vulnerability in SAP NetWeaver AS ABAP within Web Dynpro ABAP | 4.3 | Medium | 2022-02 | 2022/01/25 | Program error | ABAP | SAP_BASIS 701-702 SAP_BASIS 731 SAP_BASIS 786-787 SAP_BASIS 804 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
3143161 | CA-UI5-FL-LRP | Missing Authorization check for UI5 flexibility key user functionality | 4.3 | Medium | 2022-05 | 2022/05/10 | Program error | ABAP | SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
3149805 | CA-FLP-FE-COR | [CVE-2022-26101] Cross-Site Scripting (XSS) vulnerability in SAP Fiori launchpad | 8.1 | High | 2022-03 | 2022/03/08 | Program error | ABAP | SAP_BASIS 787 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
3249990 | CA-UI5-VTK-VIT | [CVE-2021-20223] Multiple Vulnerabilities in SQlite bundled with SAPUI5 | 7.5 | High | 2022-11 | 2022/11/08 | Program error | ABAP, Java | SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 UISAPUI5_STANDALONE 1000 UISAPUI5_STANDALONE 600 UISAPUI5_STANDALONE 700 UISAPUI5_STANDALONE 800 UISAPUI5_STANDALONE 900 |
3326210 | CA-UI5-CTR-BAL | [CVE-2023-30743] Improper Neutralization of Input in SAPUI5 | 7.1 | High | 2023-05 | 2023/05/09 | Program error | ABAP | SAP_UI 750 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 UI_700 200 |
3396109 | BC-FES-BUS | [CVE-2024-22128] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Business Client for HTML | 4.7 | Medium | 2024-02 | 2024/02/13 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
3324285 | CA-UI5-COR | [CVE-2023-33991] Stored Cross-Site Scripting vulnerability in SAP UI5 (Variant Management) | 8.2 | High | 2023-06 | 2023/06/13 | Program error | SAP UI5 | SAP_UI 750 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 UI_700 200 |
3149794 | CA-UI5-COR | Cross-Site Scripting (XSS) vulnerabilities in jQuery-UI library bundled with SAPUI5 | 6.1 | Medium | 2023-08 | 2023/08/08 | Program error | SAP UI5 | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 UI_700 200 |
3323163 | BC-WD-UR | [CVE-2023-40624] Code Injection vulnerability in SAP NetWeaver AS ABAP (applications based on Unified Rendering) | 5.5 | Medium | 2023-09 | 2023/09/12 | Program error | ABAP | SAP_BASIS 702 SAP_BASIS 731 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
3446076 | CA-UI5-SC | [CVE-2024-33007] Client-side script execution vulnerability in SAP UI5(PDFViewer) | 3.5 | Low | 2024-05 | 2024/05/14 | Program error | ABAP | SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
3468102 | BC-FES-BUS-RUN | [CVE-2024-41732] Improper Access Control in SAP Netweaver Application Server ABAP | 4.7 | Medium | 2024-08 | 2024/08/13 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 912 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
3406786 | CA-FLP-ABA | [CVE-2023-49584] Client-Side Desynchronization vulnerability in SAP Fiori Launchpad | 4.3 | Medium | 2023-12 | 2023/12/12 | Program error | SAP UI5 | SAP_BASIS 793 SAP_UI 750 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 UI_700 200 |
3159329 | CA-UI5-COR-FND | Denial of service (DoS) vulnerability in JSZip library bundled within SAPUI5 | 5.3 | Medium | 2023-12 | 2023/12/12 | Program error | ABAP | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 UI_700 200 |