Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2023/09/12 2:15 a.m.7 views

CVE-2023-41369

The Create Single Payment application of SAP S/4HANA - versions 100, 101, 102, 103, 104, 105, 106, 107, 108, allows an attacker to upload the XML file as an attachment. When clicked on the XML file in the attachment section, the file gets opened in the browser to cause the entity loops to slow do...

4.3CVSS4.2AI score0.00109EPSS
Exploits0References2
OSV
OSVadded 2023/09/12 2:15 a.m.1 views

CVE-2023-41369

The Create Single Payment application of SAP S/4HANA - versions 100, 101, 102, 103, 104, 105, 106, 107, 108, allows an attacker to upload the XML file as an attachment. When clicked on the XML file in the attachment section, the file gets opened in the browser to cause the entity loops to slow do...

4.3CVSS5.8AI score0.00109EPSS
Exploits0References2
OSV
OSVadded 2023/09/12 2:15 a.m.9 views

PYSEC-2023-172

The Create Single Payment application of SAP S/4HANA - versions 100, 101, 102, 103, 104, 105, 106, 107, 108, allows an attacker to upload the XML file as an attachment. When clicked on the XML file in the attachment section, the file gets opened in the browser to cause the entity loops to slow do...

4.3CVSS7AI score0.00109EPSS
Exploits0References2
CVE
CVEadded 2023/09/12 1:59 a.m.39 views

CVE-2023-41369

CVE-2023-41369 affects SAP S/4HANA Create Single Payment application (versions 100–108). The vulnerability allows an attacker to upload an XML file as an attachment and, when opened in the browser, triggers entity loops that slow down the browser. Documented details indicate the issue originates ...

4.3CVSS4.3AI score0.00109EPSS
Exploits0References2Affected Software1
CNNVD
CNNVDadded 2023/09/12 12:0 a.m.1 views

SAP S/4HANA Code Issue Vulnerability

SAP S/4HANA is an enterprise resource management software based on the SAP HANA in-memory database system from SAP, Germany. A code issue vulnerability exists in SAP S/4HANA, which arises from a Create Single Payment application that allows an attacker to upload an XML file as an attachment and...

4.3CVSS7AI score0.00109EPSS
Exploits0References4
Cvelist
Cvelistadded 2022/01/14 7:11 p.m.10 views

CVE-2022-22531

The F0743 Create Single Payment application of SAP S/4HANA - versions 100, 101, 102, 103, 104, 105, 106, does not check uploaded or downloaded files. This allows an attacker with basic user rights to run arbitrary script code, resulting in sensitive information being disclosed or modified...

8.1AI score0.00373EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2022/01/14 12:0 a.m.1 views

PT-2022-15501 · Sap · Sap S/4Hana

Name of the Vulnerable Software and Affected Versions: SAP S/4HANA versions 100 through 106 Description: The issue concerns the F0743 Create Single Payment application, which fails to check uploaded or downloaded files. This oversight allows an attacker with basic user rights to execute arbitrary...

8.1CVSS8.2AI score0.00373EPSS
Exploits0References4
Rows per page
Query Builder