Lucene search
K

22 matches found

RedhatCVE
RedhatCVE
added 2026/01/14 1:22 a.m.8 views

CVE-2026-0504

Due to insufficient input handling, the SAP Identity Management REST interface allows an authenticated administrator to submit specially crafted malicious REST requests that are processed by JNDI operations without adequate input neutralization. This may lead to limited disclosure or modification...

3.8CVSS6.4AI score0.00171EPSS
Exploits0References1
NVD
NVD
added 2026/01/13 2:15 a.m.8 views

CVE-2026-0504

Due to insufficient input handling, the SAP Identity Management REST interface allows an authenticated administrator to submit specially crafted malicious REST requests that are processed by JNDI operations without adequate input neutralization. This may lead to limited disclosure or modification...

3.8CVSS0.00171EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/13 1:14 a.m.27 views

CVE-2026-0504 Insufficient Input Handling in JNDI Operations of SAP Identity Management

Due to insufficient input handling, the SAP Identity Management REST interface allows an authenticated administrator to submit specially crafted malicious REST requests that are processed by JNDI operations without adequate input neutralization. This may lead to limited disclosure or modification...

3.8CVSS0.00171EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/13 1:14 a.m.4 views

CVE-2026-0504 Insufficient Input Handling in JNDI Operations of SAP Identity Management

Due to insufficient input handling, the SAP Identity Management REST interface allows an authenticated administrator to submit specially crafted malicious REST requests that are processed by JNDI operations without adequate input neutralization. This may lead to limited disclosure or modification...

3.8CVSS6AI score0.00171EPSS
Exploits0References2
CVE
CVE
added 2026/01/13 1:14 a.m.20 views

CVE-2026-0504

CVE-2026-0504 affects SAP Identity Management REST interface. The issue arises from insufficient input handling that allows an authenticated administrator to send crafted REST requests processed by JNDI operations without proper input neutralization. According to multiple sources, this can lead t...

3.8CVSS6AI score0.00171EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.3 views

SAP Identity Management 安全漏洞

SAP Identity Management is a suite of identity management applications from SAP Germany that can be embedded into business processes. A security vulnerability exists in SAP Identity Management that stems from insufficient input processing and could cause an authenticated administrator to submit a...

3.8CVSS5.8AI score0.00171EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-14272

Malware in sbrugna...

5.3CVSS5.5AI score0.01355EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-1074

Malware in sbrugna...

8.8CVSS8.8AI score0.01131EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-27408

Malware in sbrugna...

6.5CVSS4.9AI score0.0068EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-14271

Malware in sbrugna...

5.5CVSS5.5AI score0.01506EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/22 3:40 p.m.7 views

CVE-2020-6258

SAP Identity Management, version 8.0, does not perform necessary authorization checks for an authenticated user, allowing the attacker to view certain sensitive information of the victim, leading to Missing Authorization Check...

6.5CVSS6.3AI score0.0068EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:10 a.m.10 views

CVE-2019-0301

Under certain conditions, it is possible to request the modification of role or privilege assignments through SAP Identity Management REST Interface Version 2, which would otherwise be restricted only for viewing...

8.8CVSS7AI score0.01131EPSS
Exploits0References1
NVD
NVD
added 2020/05/12 6:15 p.m.12 views

CVE-2020-6258

SAP Identity Management, version 8.0, does not perform necessary authorization checks for an authenticated user, allowing the attacker to view certain sensitive information of the victim, leading to Missing Authorization Check...

6.5CVSS4.8AI score0.0068EPSS
Exploits0References2
OSV
OSV
added 2020/05/12 6:15 p.m.4 views

CVE-2020-6258

SAP Identity Management, version 8.0, does not perform necessary authorization checks for an authenticated user, allowing the attacker to view certain sensitive information of the victim, leading to Missing Authorization Check...

6.5CVSS6AI score0.0068EPSS
Exploits0References2
Prion
Prion
added 2020/05/12 6:15 p.m.15 views

Authorization

SAP Identity Management, version 8.0, does not perform necessary authorization checks for an authenticated user, allowing the attacker to view certain sensitive information of the victim, leading to Missing Authorization Check...

4CVSS6.2AI score0.0068EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/05/12 5:57 p.m.15 views

CVE-2020-6258

SAP Identity Management, version 8.0, does not perform necessary authorization checks for an authenticated user, allowing the attacker to view certain sensitive information of the victim, leading to Missing Authorization Check...

4.3CVSS6.3AI score0.0068EPSS
Exploits0References2
NVD
NVD
added 2019/05/14 9:29 p.m.18 views

CVE-2019-0301

Under certain conditions, it is possible to request the modification of role or privilege assignments through SAP Identity Management REST Interface Version 2, which would otherwise be restricted only for viewing...

8.8CVSS8.8AI score0.01131EPSS
Exploits0References2
OSV
OSV
added 2019/05/14 9:29 p.m.5 views

CVE-2019-0301

Under certain conditions, it is possible to request the modification of role or privilege assignments through SAP Identity Management REST Interface Version 2, which would otherwise be restricted only for viewing...

8.8CVSS7.3AI score0.01131EPSS
Exploits0References2
Prion
Prion
added 2019/05/14 9:29 p.m.17 views

Design/Logic Flaw

Under certain conditions, it is possible to request the modification of role or privilege assignments through SAP Identity Management REST Interface Version 2, which would otherwise be restricted only for viewing...

6.5CVSS8.7AI score0.01131EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2018/05/22 12:0 a.m.3 views

SAP Identity Management XML External Entity Injection Vulnerability

SAP Identity Management is a suite of identity management applications from SAP that can be embedded into business processes. A security vulnerability exists in SAP Identity Management version 8.0, which arises from the program's failure to validate an XML document from an untrusted source. An...

5.5CVSS5.7AI score0.01506EPSS
Exploits0References1
Rows per page
Query Builder