32 matches found
EUVD-2018-14253
Malware in sbrugna...
EUVD-2020-27378
Malware in sbrugna...
EUVD-2020-27394
Malware in sbrugna...
EUVD-2021-24622
Malware in sbrugna...
CVE-2021-38150
When an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will allow him to read extremely sensitive data, such as credentials. This would allow the attacker to compromise the...
CVE-2020-6228
SAP Business Client, versions 6.5, 7.0, does not perform necessary integrity checks which could be exploited by an attacker under certain conditions to modify the installer...
CVE-2020-6244
SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories that can be executed by the application, due to uncontrolled search path element. An attacker could thereby control the behavior of the...
Vulnerabilities fixed in SAP products
Vulnerabilities have been fixed in several SAP products. The vulnerabilities potentially enable a malicious person to launch attacks execute attacks that result in the following categories of damage: Cross-Site Scripting XSS Denial-of-Service DoS. Circumvention of security measure. Remote code...
CVE-2021-38150
When an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will allow him to read extremely sensitive data, such as credentials. This would allow the attacker to compromise the...
Design/Logic Flaw
When an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will allow him to read extremely sensitive data, such as credentials. This would allow the attacker to compromise the...
CVE-2021-38150
SAP Business Client (versions 7.0 and 7.70) is affected by CVE-2021-38150. The issue allows an attacker with access to a victim’s local memory or memory dump (e.g., via social engineering) to read highly sensitive data such as credentials, potentially enabling compromise of the backend services f...
CVE-2021-38150
When an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will allow him to read extremely sensitive data, such as credentials. This would allow the attacker to compromise the...
SAP Business Client 安全漏洞
SAP Business Client is a user interface client program from SAP. The program supports access to multiple SAP applications from a single platform. SAP Business Client has a security vulnerability that allows him to read extremely sensitive data such as credentials. This would allow an attacker to...
PT-2021-21970 · Sap · Sap Business Client
Name of the Vulnerable Software and Affected Versions: SAP Business Client versions 7.0, 7.70 Description: The issue allows an attacker to read sensitive data, such as credentials, from the local memory or memory dump of a victim, for example, through a social engineering attack. This could enabl...
CVE-2020-6244
SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories that can be executed by the application, due to uncontrolled search path element. An attacker could thereby control the behavior of the...
CVE-2020-6244
SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories that can be executed by the application, due to uncontrolled search path element. An attacker could thereby control the behavior of the...
Code injection
SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories that can be executed by the application, due to uncontrolled search path element. An attacker could thereby control the behavior of the...
CVE-2020-6244
SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories that can be executed by the application, due to uncontrolled search path element. An attacker could thereby control the behavior of the...
PT-2020-19040 · Sap · Sap Business Client
Name of the Vulnerable Software and Affected Versions: SAP Business Client version 7.0 Description: The issue allows an attacker, after a successful social engineering attack, to inject malicious code as a DLL file in untrusted directories that can be executed by the application, due to an...
Unspecified Vulnerability in SAP Business Client
SAP Business Client is a business client software from SAP Germany. A security vulnerability exists in SAP Business Client versions 6.5 and 7.0, which can be exploited by attackers to modify the installed program...