768 matches found
Code injection
Odata Server in SAP Adaptive Server Enterprise ASE 16 allows remote attackers to cause a denial of service process crash via a series of crafted requests, aka SAP Security Note 2330422...
Authorization
The function msp aka MSPRuntimeInterface in the P4 SERVERCORE component in SAP AS JAVA allows remote attackers to obtain sensitive system information by leveraging a missing authorization check for the 1 getInformation, 2 getParameters, 3 getServiceInfo, 4 getStatistic, or 5 getClientStatistic...
CVE-2017-5371
Odata Server in SAP Adaptive Server Enterprise ASE 16 allows remote attackers to cause a denial of service process crash via a series of crafted requests, aka SAP Security Note 2330422...
CVE-2017-5372
SAP NetWeaver AS JAVA P4 MSPRuntimeInterface (MSPRuntimeInterface) in SERVERCORE is vulnerable to information disclosure due to missing authorization when calling getInformation, getParameters, getServiceInfo, getStatistic, or getClientStatistic. Public advisories (ErpScan ERPSCAN-16-037 and SAP ...
SAP NetWeaver AS Java P4 MSPRUNTIMEINTERFACE Information Disclosure Vulnerability
An anonymous attacker can send a special request and get sensitive information about an SAP system using SAP P4. Application: SAP NetWeaver AS JAVA Versions Affected: SAP NetWeaver AS JAVA 7.11-7.4 Vendor URL: http://SAP.com Bugs: Information disclosure Sent: 10.03.2016 Reported: 11.03.2016 Vendo...
SAP NetWeaver AS Java logon_app OpenRedirect
Application: SAP NetWeaver AS Java Versions Affected: SAP NetWeaver AS Java 7.11-7.50 Vendor URL: SAP Bug: Open redirect Reported: 18.01.2017 Vendor response: 19.01.2017 Date of Public Advisory: 08.08.2017 Reference: SAP Security Note 2423540 Author: Vahagn Vardanyan ERPScan VULNERABILITY...
SAP Solman 7.31 Information Disclosure
Application: SAP Solman Versions Affected: SAP Solman 7.1-7.31 Vendor URL: http://SAP.com Bugs: Information Disclosure Sent: 12.07.2016 Reported: 13.07.2016 Vendor response: 13.07.2016 Date of Public Advisory: 13.09.2016 Reference: SAP Security Note 2344524 Author: Roman Bezhan ERPScan Descriptio...
SAP Solman 7.31 Information Disclosure Vulnerability
SAP Solman versions 7.1 through 7.31 suffer from an information disclosure vulnerability. Application: SAP Solman Versions Affected: SAP Solman 7.1-7.31 Vendor URL: http://SAP.com Bugs: Information Disclosure Sent: 12.07.2016 Reported: 13.07.2016 Vendor response: 13.07.2016 Date of Public Advisor...
Code injection
Webdynpro in SAP Solman 7.1 through 7.31 allows remote attackers to obtain sensitive information via webdynpro/dispatcher/sap.com/cafeugpexampletimeoffwd requests, aka SAP Security Note 2344524...
CVE-2016-10005
Webdynpro in SAP Solman 7.1 through 7.31 allows remote attackers to obtain sensitive information via webdynpro/dispatcher/sap.com/cafeugpexampletimeoffwd requests, aka SAP Security Note 2344524...
CVE-2016-10005
Webdynpro in SAP Solman 7.1 through 7.31 allows remote attackers to obtain sensitive information via webdynpro/dispatcher/sap.com/cafeugpexampletimeoffwd requests, aka SAP Security Note 2344524...
SAP GUI for Windows - Remote Code Execution + bypass security policy
Application: SAP GUI Versions Affected: SAP GUI 7.2-7.5 Vendor URL: SAP Bugs: Remote Code Execution Reported: 15.12.2016 Vendor response: 16.12.2016 Date of Public Advisory: 14.03.2017 Reference: SAP Security Note 2407616 Authors: Dmitry Yudin ERPScan aka @ret5et, Vahagn Vardanyan ERPScan, Dmitry...
SAP NetWeaver AS ABAP disp+work crash
Application: SAP NetWeaver ABAP Versions Affected: SAP KERNEL 7.40 64BIT, disp+work.exe 7400.12.21.30308 Vendor URL: SAP Bugs: DoS Reported: 15.12.2016 Vendor response: 16.12.2016 Date of Public Advisory: 14.03.2017 Reference: SAP Security Note 2406841 Author: Vahagn Vardanyan ERPScan VULNERABILI...
SAP GUI for Java - insecure default settings
Application: SAP GUI for Java Versions Affected: SAP GUI for Java 7.40 Vendor URL: SAP Bug: Insecure default settings Reported: 15.12.2016 Vendor response: 16.12.2016 Date of Public Advisory: 09.05.2017 Reference: SAP Security Note 2448972 Authors: Dmitry Yudin ERPScan, Vahagn Vardanyan ERPScan,...
Hardcoded credentials
SAP Download Manager 2.1.142 and earlier generates an encryption key from a small key space on Windows and Mac systems, which allows context-dependent attackers to obtain sensitive configuration information by leveraging knowledge of a hardcoded key in the program code and a computer BIOS serial...
CVE-2016-3684
SAP Download Manager (versions up to 2.1.142) stores sensitive values in a configuration file encrypted with a hard-coded key. On Windows/Mac, the key combines the BIOS serial with a fixed key; on Linux/other platforms, the key is a fixed hard-coded value. This enables context-dependent attackers...
CVE-2016-3685
Affected software: SAP Download Manager up to version 2.1.142. Root cause: encryption of sensitive values stored in a configuration file uses a fixed static key; on Windows and macOS the key is the BIOS serial number concatenated with a hard-coded key, enabling attackers with local access to reco...
CVE-2016-3684
SAP Download Manager 2.1.142 and earlier uses a hardcoded encryption key to protect stored data, which allows context-dependent attackers to obtain sensitive configuration information by leveraging knowledge of this key, aka SAP Security Note 2282338...
SAP NetWeaver 7.3 AS Java XSS in CAFAdapterTest servlet
Application: SAP NetWeaver AS Java Versions Affected: SAP NetWeaver AS Java 7.3 Vendor URL: SAP Bug: XSS Reported: 13.12.2016 Vendor response: 14.12.2016 Date of Public Advisory: 13.06.2017 Reference: SAP Security Note 2405943 Authors: Vahagn Vardanyan ERPScan VULNERABILITY INFORMATION Class:...
SAP NetWeaver AS JAVA 7.3 AS JAVA XSS in ctcprotocol/Protocol servlet
Application: SAP NetWeaver AS JAVA Versions Affected: SAP NetWeaver AS JAVA 7.3 Vendor URL: SAP Bugs: XXS Reported: 13.12.2016 Vendor response: 14.12.2016 Date of Public Advisory: 11.04.2017 Reference: SAP Security Note 2406783 Author: Vahagn Vardanyan ERPScan VULNERABILITY INFORMATION Class: XSS...