Lucene search
+L

75 matches found

CVE
CVE
added 2026/05/12 2:21 a.m.33 views

CVE-2026-40136

Technical details are not publicly available in the provided documents; no affected versions, vectors, or mitigations are specified. Monitor for updates to SAP Financial Consolidation CVE-2026-40136.

4.3CVSS5.8AI score0.0029EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/12 2:21 a.m.66 views

CVE-2026-40136 Denial of service (DoS) in SAP Financial Consolidation

SAP Financial Consolidation allows an authenticated attacker to disconnect other users by terminating their sessions temporarily preventing access. However, the application itself cannot be compromised resulting in a low impact on availability. There is no impact on confidentiality and integrity ...

4.3CVSS0.0029EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.26 views

PT-2026-39929

SAP Financial Consolidation allows an authenticated attacker to disconnect other users by terminating their sessions temporarily preventing access. However, the application itself cannot be compromised resulting in a low impact on availability. There is no impact on confidentiality and integrity ...

4.3CVSS5.8AI score0.0029EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 10:48 a.m.8 views

CVE-2022-31595

SAP Financial Consolidation - version 1010,�does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges...

8.8CVSS8.2AI score0.00733EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:43 a.m.12 views

CVE-2022-26104

SAP Financial Consolidation - version 10.1, does not perform necessary authorization checks for updating homepage messages, resulting for an unauthorized user to alter the maintenance system message...

5.3CVSS6.9AI score0.00694EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2019-1143

Malware in sbrugna...

6.5CVSS6.6AI score0.00721EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2018-14354

Malware in sbrugna...

7.5CVSS7.6AI score0.01728EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-1142

Malware in sbrugna...

5.4CVSS5.6AI score0.00526EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-44469

Malicious code in bioql PyPI...

6.1CVSS7.1AI score0.00412EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-44467

Malicious code in bioql PyPI...

6.5CVSS7.4AI score0.00369EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-36484

Malicious code in bioql PyPI...

5CVSS6.6AI score0.003EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-53049

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00733EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-30672

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00694EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-44449

Malicious code in bioql PyPI...

5.4CVSS6.7AI score0.00408EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/06/04 12:0 a.m.15 views

The vulnerability of the SAP Financial Consolidation web application lies in the storage of confidential information within a mechanism with no access control. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the SAP Financial Consolidation web application relates to the storage of confidential information within a mechanism without access control. Exploiting this vulnerability could allow an attacker operating remotely to compromise the confidentiality, integrity, and accessibili...

10CVSS5.4AI score0.00596EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 1:14 a.m.13 views

CVE-2022-41258

Due to insufficient input validation, SAP Financial Consolidation - version 1010, allows an authenticated attacker to inject malicious script when running a common query in the Web Administration Console. On successful exploitation, an attacker can view or modify information causing a limited...

6.5CVSS6.4AI score0.00369EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:53 a.m.13 views

CVE-2022-41260

SAP Financial Consolidation - version 1010, does not sufficiently encode user-controlled input which may allow an unauthenticated attacker to inject a web script via a GET request. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality a...

6.1CVSS6.7AI score0.00412EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:53 a.m.19 views

CVE-2022-41208

Due to insufficient input validation, SAP Financial Consolidation - version 1010, allows an authenticated attacker with user privileges to alter current user session. On successful exploitation, the attacker can view or modify information, causing a limited impact on confidentiality and integrity...

5.4CVSS6.7AI score0.00408EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:27 a.m.9 views

CVE-2019-0370

Due to missing input validation, SAP Financial Consolidation, before versions 10.0 and 10.1, enables an attacker to use crafted input to interfere with the structure of the surrounding query leading to XPath Injection...

6.5CVSS6.9AI score0.00721EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:40 a.m.9 views

CVE-2019-0369

SAP Financial Consolidation, before versions 10.0 and 10.1, does not sufficiently encode user-controlled inputs, which allows an attacker to execute scripts by uploading files containing malicious scripts, leading to reflected cross site scripting vulnerability...

5.4CVSS6.5AI score0.00526EPSS
Exploits0References1
Rows per page
Query Builder