77 matches found
CVE-2025-21568
...
SAP GUI 安全漏洞
SAP GUI is an application from SAP, a German company. graphical user interface for SAP systems. A security vulnerability exists in SAP GUI for Windows that stems from storing user input on the client PC to improve usability, and an attacker is able to read this data...
CVE-2025-23128
CVE-2025-23128 is rejected/not used per the description.
The vulnerability of the SAP GUI graphical user interface for Windows lies in the insufficient protection of operational data, allowing an intruder to gain unauthorized access to protected information.
The vulnerability of the SAP GUI graphical user interface for Windows relates to the display of a password used to access the SAP system. This vulnerability stems from insufficient protection of administrative data. Exploiting this vulnerability could allow an intruder to gain unauthorized access...
SAP Student Life Cycle Management 安全漏洞
SAP Student Life Cycle Management is a student life cycle management system from SAP, Germany. A security vulnerability exists in SAP Student Life Cycle Management, which results from an authenticated attacker with elevated privileges being able to use SLCM transaction functions to which access...
SAP Shared Service Framework 安全漏洞
SAP Shared Service Framework is an integration platform from SAP, Germany, designed to support the operation and management of shared services within an organization. A security vulnerability exists in SAP Shared Service Framework that stems from not performing the required authorization checks o...
SAP BusinessObject Business Intelligence Launch Pad 信息泄露漏洞
SAP BusinessObject Business Intelligence Launch Pad is a web control panel for the Business Intelligence platform from SAP, Germany. An information disclosure vulnerability exists in SAP BusinessObject Business Intelligence Launch Pad versions 4.2 and 4.3, which arises from improper authenticatio...
Centreon 安全漏洞
Centreon Merethis Centreon is a set of open source system monitoring tools from the French company Centreon . The product provides monitoring capabilities for resources such as networks, systems and applications. A security vulnerability exists in Centreon. An attacker can exploit this...
CVE-2024-22131
In SAP ABA Application Basis - versions 700, 701, 702, 731, 740, 750, 751, 752, 75C, 75I, an attacker authenticated as a user with a remote execution authorization can use a vulnerable interface. This allows the attacker to use the interface to invoke an application function to perform actions...
SAP GUI Security Vulnerability
SAP GUI is an application from SAP, a German company. graphical user interface for SAP systems. A security vulnerability exists in the SAP GUI connector for Microsoft Edge, which arises from allowing an attacker, under certain circumstances, to access highly sensitive information that would...
CVE-2023-22101
...
The vulnerability of SAP ERP Defense Forces and Public Security software lies in the improper processing of output data for registration logs, allowing a perpetrator to re-record arbitrary files.
The vulnerability of SAP ERP Defense Forces and Public Security software is related to incorrect processing of output data for registration logs. Exploiting this vulnerability can allow a malicious actor to re-record arbitrary files...
The vulnerability of the user interface of the SAP CRM WebClient UI, which allows an attacker to perform XSS attacks.
The vulnerability of the SAP CRM WebClient UI user interface lies in the lack of security measures taken to protect the web page structure. Exploiting this vulnerability allows an attacker to execute XSS attacks remotely...
SAP CRM 跨站脚本漏洞
SAP CRM is a customer relationship management system from SAP, a German company. A cross-site scripting vulnerability exists in SAP CRM that stems from not adequately coding user-controlled input...
PT-2022-25001 · Sap · Sap 3D Visual Enterprise Author
Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Author version 9 Description: The issue arises due to improper memory management. When a victim opens a manipulated SolidWorks Part .sldprt file in SAP 3D Visual Enterprise Author, it can trigger Remote Code Execution...
The vulnerability of the SAP Enable Now Manager platform, related to deficiencies in the authentication process, allows a perpetrator to gain unauthorized access to protected information and compromise its integrity.
The vulnerability of the SAP Enable Now Manager platform is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information and compromise its integrity...
SAP S/4HANA 输入验证错误漏洞
SAP S/4HANA is an enterprise resource management software based on the SAP HANA in-memory database system from the German company SAP. SAP S/4HANA is vulnerable to an input validation error that stems from a lack of input validation in the management checkbook component, which could be exploited ...
CVE-2022-26105
SAP NetWeaver Enterprise Portal - versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, is susceptible to script execution attack by an unauthenticated attacker due to improper sanitization of the user inputs while interacting on the Network. On successful exploitation, an attacker can view or modif...
SAP Business Objects Business Intelligence Platform 信息泄露漏洞
SAP Business Objects Business Intelligence Platform is a suite of business intelligence software and enterprise performance solutions from SAP, Germany. The product features report generation, analytics, and data visualization. An information disclosure vulnerability exists in SAP Business Object...
SAP SAPCAR 输入验证错误漏洞
SAP SAPCAR is a utility program from SAP Germany for compressing and/or decompressing SAP archive files. An input validation error vulnerability exists in SAP SAPCAR that stems from a failure to perform sufficient input validation. An attacker could exploit the vulnerability to gain privileged...