Lucene search
K

191 matches found

Prion
Prion
added 2020/05/12 6:15 p.m.14 views

Code injection

SAP Adaptive Server Enterprise Backup Server, version 16.0, does not perform the necessary validation checks for an authenticated user while executing DUMP or LOAD command allowing arbitrary code execution or Code Injection...

6.5CVSS7.5AI score0.01888EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/05/12 6:15 p.m.19 views

Authorization

Under certain conditions SAP Adaptive Server Enterprise, versions 15.7, 16.0, allows an attacker to access information which would otherwise be restricted leading to Missing Authorization Check...

4CVSS6.3AI score0.00774EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/05/12 6:15 p.m.15 views

Information disclosure

Under certain conditions SAP Adaptive Server Enterprise Cockpit, version 16.0, allows an attacker with access to local network, to get sensitive and confidential information, leading to Information Disclosure. It can be used to get user account credentials, tamper with system data and impact syst...

5.2CVSS7.7AI score0.0052EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/05/12 6:15 p.m.23 views

Sql injection

Under certain conditions, SAP Adaptive Server Enterprise Web Services, versions 15.7, 16.0, allows an authenticated user to execute crafted database queries to elevate their privileges, modify database objects, or execute commands they are not otherwise authorized to execute, leading to SQL...

6.5CVSS7.2AI score0.01236EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/05/12 5:56 p.m.67 views

CVE-2020-6241

SAP Adaptive Server Enterprise (ASE) 16.0 is affected by CVE-2020-6241. The vulnerability is a SQL injection in global temporary tables that an authenticated user can exploit to elevate privileges within ASE. The issue is confirmed by Red Hat’s CVE entry and ThreatPost reporting alongside SAP/Tru...

8.8CVSS8.8AI score0.00974EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/05/12 5:56 p.m.23 views

CVE-2020-6259

Under certain conditions SAP Adaptive Server Enterprise, versions 15.7, 16.0, allows an attacker to access information which would otherwise be restricted leading to Missing Authorization Check...

6.5CVSS6.3AI score0.00774EPSS
Exploits0References2
CVE
CVE
added 2020/05/12 5:56 p.m.61 views

CVE-2020-6259

The CVE-2020-6259 entry concerns SAP Adaptive Server Enterprise. Affected software: SAP ASE versions 15.7 and 16.0. Issue: a Missing Authorization Check that could let an attacker access information that should be restricted, resulting in information disclosure. Root cause: insufficient authoriza...

6.5CVSS6.3AI score0.00774EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/05/12 5:55 p.m.20 views

CVE-2020-6252

Under certain conditions SAP Adaptive Server Enterprise Cockpit, version 16.0, allows an attacker with access to local network, to get sensitive and confidential information, leading to Information Disclosure. It can be used to get user account credentials, tamper with system data and impact syst...

9CVSS7.8AI score0.0052EPSS
Exploits0References2
CVE
CVE
added 2020/05/12 5:55 p.m.62 views

CVE-2020-6253

CVE-2020-6253 affects SAP Adaptive Server Enterprise Web Services (versions 15.7 and 16.0). The vulnerability arises from the WebServices handling code, enabling an authenticated user to craft database queries that elevate privileges, modify objects, or execute unauthorised commands, i.e., a SQL ...

7.2CVSS7.7AI score0.01236EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/05/12 5:50 p.m.17 views

CVE-2020-6248

SAP Adaptive Server Enterprise Backup Server, version 16.0, does not perform the necessary validation checks for an authenticated user while executing DUMP or LOAD command allowing arbitrary code execution or Code Injection...

9.1CVSS7.5AI score0.01888EPSS
Exploits0References2
CVE
CVE
added 2020/05/12 5:47 p.m.64 views

CVE-2020-6243

The CVE-2020-6243 entry affects SAP Adaptive Server Enterprise (XP Server on Windows), specifically versions 15.7 and 16.0. The root cause is that the extended stored procedure execution may not perform necessary checks for an authenticated user, allowing an attacker to read, modify, or delete re...

8.8CVSS8.5AI score0.00881EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/12/11 10:15 p.m.23 views

CVE-2019-0402

SAP Adaptive Server Enterprise, before versions 15.7 and 16.0, under certain conditions exposes some sensitive information to the admin, leading to Information Disclosure...

4.4CVSS4.6AI score0.00419EPSS
Exploits0References2
OSV
OSV
added 2019/12/11 10:15 p.m.6 views

CVE-2019-0402

SAP Adaptive Server Enterprise, before versions 15.7 and 16.0, under certain conditions exposes some sensitive information to the admin, leading to Information Disclosure...

4.4CVSS5.8AI score0.00419EPSS
Exploits0References2
Prion
Prion
added 2019/12/11 10:15 p.m.18 views

Information disclosure

SAP Adaptive Server Enterprise, before versions 15.7 and 16.0, under certain conditions exposes some sensitive information to the admin, leading to Information Disclosure...

2.1CVSS4.6AI score0.00419EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/12/11 9:35 p.m.79 views

CVE-2019-0402

CVE-2019-0402 affects SAP Adaptive Server Enterprise (ASE) prior to 15.7 and 16.0. The issue is an information-disclosure vulnerability that can occur under certain conditions, potentially exposing sensitive information from ASE. Exploitation requires local access with high privileges; no user in...

4.4CVSS4.6AI score0.00419EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/12/11 9:35 p.m.20 views

CVE-2019-0402

SAP Adaptive Server Enterprise, before versions 15.7 and 16.0, under certain conditions exposes some sensitive information to the admin, leading to Information Disclosure...

4.6AI score0.00419EPSS
Exploits0References2
CNVD
CNVD
added 2019/12/11 12:0 a.m.2 views

SAP Adaptive Server Enterprise Information Disclosure Vulnerability (CNVD-2019-46440)

SAP Adaptive Server Enterprise ASE is a relational database management system from SAP. The system can be used in data-intensive environments and is characterized by high speed and stable performance. An information disclosure vulnerability exists in SAP Adaptive Server Enterprise versions 15.7 a...

4.4CVSS6.1AI score0.00419EPSS
Exploits0References1
Symantec
Symantec
added 2019/12/10 12:0 a.m.32 views

SAP Adaptive Server Enterprise CVE-2019-0402 Information Disclosure Vulnerability

Description SAP Adaptive Server Enterprise is prone to an unspecified information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may lead to further attacks. SAP Adaptive Server Enterprise versions 15.7 and 16.0 are vulnerable. Technologies Affecte...

0.7AI score0.00419EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2018/10/10 12:0 a.m.2 views

SAP Adaptive Server Enterprise Information Disclosure Vulnerability (CNVD-2019-05056)

SAP Adaptive Server Enterprise ASE is a relational database management system from SAP. The system can be used in data-intensive environments , and has a fast , stable performance , etc. Backup Server is one of the backup server . An information disclosure vulnerability exists in the Backup Serve...

7.5CVSS7.2AI score0.01728EPSS
Exploits0References1
CNVD
CNVD
added 2018/10/10 12:0 a.m.3 views

SAP Adaptive Server Enterprise Information Disclosure Vulnerability

SAP Adaptive Server Enterprise ASE is a relational database management system from SAP. The system can be used in data-intensive environments and is characterized by high speed and stable performance. An information disclosure vulnerability exists in SAP Adaptive Server Enterprise ASE versions 15...

7.5CVSS7.1AI score0.01728EPSS
Exploits0References1
Rows per page
Query Builder