21 matches found
EUVD-2023-12124
Malicious code in bioql PyPI...
EUVD-2021-31080
Malicious code in bioql PyPI...
EUVD-2022-42246
Malicious code in bioql PyPI...
CVE-2025-42982
SAP GRC allows a non-administrative user to access and initiate transaction which could allow them to modify or control the transmitted system credentials. This causes high impact on confidentiality, integrity and availability of the application...
CVE-2025-42982
SAP GRC allows a non-administrative user to access and initiate transaction which could allow them to modify or control the transmitted system credentials. This causes high impact on confidentiality, integrity and availability of the application...
CVE-2025-42982
CVE-2025-42982 affects SAP GRC. The vulnerability allows a non-administrative user to access and initiate a transaction that could modify or control transmitted system credentials, with high impact to confidentiality, integrity, and availability. Root cause is insufficient authorization controls ...
CVE-2025-42982 Information Disclosure in SAP GRC (AC Plugin)
SAP GRC allows a non-administrative user to access and initiate transaction which could allow them to modify or control the transmitted system credentials. This causes high impact on confidentiality, integrity and availability of the application...
CVE-2025-42982 Information Disclosure in SAP GRC (AC Plugin)
SAP GRC allows a non-administrative user to access and initiate transaction which could allow them to modify or control the transmitted system credentials. This causes high impact on confidentiality, integrity and availability of the application...
SAP GRC 安全漏洞
SAP GRC is a suite of solutions and products from SAP, Germany. can help you manage enterprise resources in a way that minimizes risk, builds trust, and reduces compliance costs. A security vulnerability exists in SAP GRC that stems from improper authorization and could result in modification or...
PT-2025-24586 · Sap · Sap Grc
Name of the Vulnerable Software and Affected Versions: SAP GRC affected versions not specified Description: The issue allows a non-administrative user to access and initiate transactions, potentially enabling them to modify or control transmitted system credentials. This poses a high impact on th...
CVE-2023-0019
In SAP GRC Process Control - versions GRCFNDA V1200, GRCFNDA V8100, GRCPINW V1100700, GRCPINW V1100731, GRCPINW V1200750, remote-enabled function module in the proprietary SAP solution enables an authenticated attacker with minimal privileges to access all the confidential data stored in the...
Design/Logic Flaw
In SAP GRC Process Control - versions GRCFNDA V1200, GRCFNDA V8100, GRCPINW V1100700, GRCPINW V1100731, GRCPINW V1200750, remote-enabled function module in the proprietary SAP solution enables an authenticated attacker with minimal privileges to access all the confidential data stored in the...
CVE-2023-0019
In SAP GRC Process Control - versions GRCFNDA V1200, GRCFNDA V8100, GRCPINW V1100700, GRCPINW V1100731, GRCPINW V1200750, remote-enabled function module in the proprietary SAP solution enables an authenticated attacker with minimal privileges to access all the confidential data stored in the...
CVE-2022-39801
SAP GRC Access control Emergency Access Management allows an authenticated attacker to access a Firefighter session even after it is closed in Firefighter Logon Pad. This attack can be launched only within the firewall. On successful exploitation the attacker can gain access to admin session and...
CVE-2022-39801
SAP GRC Access control Emergency Access Management allows an authenticated attacker to access a Firefighter session even after it is closed in Firefighter Logon Pad. This attack can be launched only within the firewall. On successful exploitation the attacker can gain access to admin session and...
CVE-2022-39801
CVE-2022-39801 relates to SAP GRC Access Control Emergency Access Management. An authenticated attacker can access a Firefighter session after it is closed in the Firefighter Logon Pad, with exploitation possible only inside the firewall, potentially enabling access to an admin session and comple...
PT-2022-24999 · Sap · Sap Grc Access Control
Name of the Vulnerable Software and Affected Versions: SAP GRC Access control affected versions not specified Description: The issue allows an authenticated attacker to access a Firefighter session even after it is closed in Firefighter Logon Pad. This attack can be launched only within the...
CVE-2021-44233
SAP GRC Access Control - versions V1100700, V1100731, V1200750, does not perform necessary authorization checks for an authenticated user, which could lead to escalation of privileges...
Authorization
SAP GRC Access Control - versions V1100700, V1100731, V1200750, does not perform necessary authorization checks for an authenticated user, which could lead to escalation of privileges...
CVE-2021-44233
SAP GRC Access Control - versions V1100700, V1100731, V1200750, does not perform necessary authorization checks for an authenticated user, which could lead to escalation of privileges...