Lucene search
K

9 matches found

NVD
NVD
added 2025/08/12 3:15 a.m.54 views

CVE-2025-42943

SAP GUI for Windows may allow the leak of NTML hashes when specific ABAP frontend services are called with UNC paths. For a successful attack, the attacker needs developer authorization in a specific Application Server ABAP to make changes in the code, and the victim needs to execute by using SAP...

4.5CVSS0.00289EPSS
Exploits0References2
CVE
CVE
added 2025/08/12 2:5 a.m.25 views

CVE-2025-42943

CVE-2025-42943 affects SAP GUI for Windows. The vulnerability involves leakage of NTLM hashes when UNC paths are used with certain ABAP frontend services, triggered by user-side execution of SAP GUI for Windows. The underlying issue is exposure of credentials during automatic NTLM authentication,...

4.5CVSS7.3AI score0.00289EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/07/14 12:0 a.m.9 views

The vulnerability of the graphical SFTP and SCP client for the Windows operating system, WinSCP, arises from incorrect path name restrictions for access-controlled directories. This allows attackers to create a special file and control its path on a remote server.

The vulnerability of the graphical SFTP and SCP client programs for the Windows operating system is related to incorrect path name restrictions for access to restricted directories. Exploiting this vulnerability allows an attacker to create a special file and control its path on a remote server...

6.8CVSS5.6AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/11 12:0 a.m.5 views

The vulnerability of the graphical component of Windows operating systems, which allows a hacker to disclose protected information

The vulnerability of the graphical component of Windows operating systems is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...

5.5CVSS5.6AI score0.00624EPSS
Exploits0References2
OSV
OSV
added 2023/01/10 10:15 p.m.3 views

CVE-2023-21552

Windows GDI Elevation of Privilege Vulnerability...

7.8CVSS7.1AI score0.03537EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/01/12 12:0 a.m.9 views

SAP GUI for Windows Security Vulnerability

Opera Software Opera is a Norwegian web browser from Opera Software that supports multi-window browsing, customized user interface, etc. Microsoft Windows is a desktop operating system from Microsoft Corporation in the United States. A security vulnerability exists in SAP GUI for Windows 7.60,...

6.5CVSS6.4AI score0.00287EPSS
Exploits0References5
CNVD
CNVD
added 2020/10/15 12:0 a.m.33 views

Microsoft Windows and Windows Server Information Disclosure Vulnerability (CNVD-2021-71945)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, an operating system for personal devices, and Microsoft Windows Server is a server operating system. Microsoft Windows and Windows Server are vulnerable to an information disclosure vulnerability that stems...

5.5CVSS0.9AI score0.01333EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/03/10 12:0 a.m.4 views

The vulnerability of the graphical component of the Windows operating system allows attackers to enhance their privileges.

The vulnerability of the graphical component of the Windows operating system is related to errors in object handling in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially created application...

7.8CVSS7.2AI score0.00962EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2017/07/06 12:0 a.m.6 views

The vulnerabilities of the graphical component of the Windows operating system, Skype for Business and Microsoft Lync messaging programs, the Microsoft Office suite of programs, and the Silverlight software platform allow a perpetrator to execute arbitrary code.

The vulnerability of the graphical component of the Windows operating system, the Skype for Business and Microsoft Lync messaging applications, the Microsoft Office suite, and the Silverlight software platform is related to object handling in memory. Exploiting this vulnerability allows a remote...

9.3CVSS8AI score0.19023EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder