Memory corruption

SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted to an open port causes a memory corruption error in a library which in turn causes the target component to crash making it unavailable. There is no ability to view or modify any information...

CVE-2023-40308 Memory Corruption vulnerability in SAP CommonCryptoLib

SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted to an open port causes a memory corruption error in a library which in turn causes the target component to crash making it unavailable. There is no ability to view or modify any information...

CVE-2023-40308

The CVE-2023-40308 issue affects SAP CommonCryptoLib and is caused by memory corruption triggered by an unauthenticated crafted request sent to an open port. The resulting crash makes the target component unavailable, with no impact on confidentiality or integrity reported. Evidence across multip...

CVE-2023-40308 Memory Corruption vulnerability in SAP CommonCryptoLib

SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted to an open port causes a memory corruption error in a library which in turn causes the target component to crash making it unavailable. There is no ability to view or modify any information...

SAP CommonCryptoLib Code Issue Vulnerability

SAP CommonCryptoLib is a cryptographic library from SAP, Germany. A code issue vulnerability exists in SAP CommonCryptoLib that originates from allowing an unauthenticated attacker to craft a request that, when submitted to an open port, would result in a memory corruption error in the library,...

SAP CommonCryptoLib and abu security vulnerabilities

SAP CommonCryptoLib is a password library from SAP, a German company. A security vulnerability exists in SAP CommonCryptoLib that stems from not performing the required authentication checks, which could result in missing or incorrect authorization checks for authenticated users, leading to...

CVE-2021-38177

SAP CommonCryptoLib version 8.5.38 or lower is vulnerable to null pointer dereference vulnerability when an unauthenticated attacker sends crafted malicious data in the HTTP requests over the network, this causes the SAP application to crash and has high impact on the availability of the SAP syst...

CVE-2021-38177

SAP CommonCryptoLib version 8.5.38 or lower is vulnerable to null pointer dereference vulnerability when an unauthenticated attacker sends crafted malicious data in the HTTP requests over the network, this causes the SAP application to crash and has high impact on the availability of the SAP syst...

CVE-2021-38177

The CVE-2021-38177 entry concerns SAP CommonCryptoLib version 8.5.38 or lower, vulnerable to a null pointer dereference when an unauthenticated attacker sends crafted HTTP data over the network. The underlying issue causes the SAP application to crash, with a high impact on availability. Document...

CVE-2021-38177

SAP CommonCryptoLib version 8.5.38 or lower is vulnerable to null pointer dereference vulnerability when an unauthenticated attacker sends crafted malicious data in the HTTP requests over the network, this causes the SAP application to crash and has high impact on the availability of the SAP syst...

SAP CommonCryptoLib代码问题漏洞

SAP CommonCryptoLib is a cryptographic library from SAP, a German company. A security vulnerability exists in SAP CommonCryptoLib version 8.5.38 and below, which stems from a null pointer reference vulnerability in the software. An unauthenticated attacker could use this vulnerability to send...

Code injection

SAPCRYPTOLIB before 5.555.38, SAPSECULIB, and CommonCryptoLib before 8.4.30, as used in SAP NetWeaver AS for ABAP and SAP HANA, allows remote attackers to spoof Digital Signature Algorithm DSA signatures via unspecified vectors...

PT-2014-8634 · Sap · Sap Netweaver As Abap +4

Name of the Vulnerable Software and Affected Versions: SAPCRYPTOLIB versions prior to 5.555.38 SAPSECULIB affected versions not specified CommonCryptoLib versions prior to 8.4.30 Description: The issue allows remote attackers to spoof Digital Signature Algorithm DSA signatures via unspecified...