Lucene search
+L

5 matches found

Vulnrichment
Vulnrichment
added 2025/04/08 7:13 a.m.7 views

CVE-2025-27428 Directory Traversal vulnerability in SAP NetWeaver and ABAP Platform (Service Data Collection)

Due to directory traversal vulnerability, an authorized attacker could gain access to some critical information by using RFC enabled function module. Upon successful exploitation, they could read files from any managed system connected to SAP Solution Manager, leading to high impact on...

7.7CVSS7AI score0.00591EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/08 7:13 a.m.21 views

CVE-2025-27428 Directory Traversal vulnerability in SAP NetWeaver and ABAP Platform (Service Data Collection)

Due to directory traversal vulnerability, an authorized attacker could gain access to some critical information by using RFC enabled function module. Upon successful exploitation, they could read files from any managed system connected to SAP Solution Manager, leading to high impact on...

7.7CVSS0.00591EPSS
Exploits0References2
CVE
CVE
added 2025/04/08 7:13 a.m.76 views

CVE-2025-27428

CVE-2025-27428 is a directory traversal vulnerability impacting SAP Solution Manager (and related SAP NetWeaver/ABAP Platform components) where an authorized attacker can read files from any managed system via an RFC-enabled function module. The exposure is described as high impact to confidentia...

7.7CVSS7AI score0.00591EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/03/05 11:15 a.m.35 views

CVE-2023-5457

A CWE-1269 “Product Released in Non-Release Configuration” vulnerability in the Django web framework used by the web application due to the “debug” configuration parameter set to “True” allows a remote unauthenticated attacker to access critical information and have other unspecified impacts to t...

7.5CVSS7.7AI score0.00644EPSS
Exploits0References1
erpscan
erpscan
added 2017/05/16 12:0 a.m.503 views

XSS in CRM (Java)

Application: SAP CRM Versions Affected: SAP CRM 700-732 Vendor URL: SAP Bug: XSS Reported: 16.05.2017 Vendor response: 17.05.2017 Date of Public Advisory: 08.08.2017 Reference: SAP Security Note 2481262 Author: Vladimir Egorov ERPScan VULNERABILITY INFORMATION Class: XSS Risk: Medium Impact:...

0.1AI score
Exploits0
Rows per page
Query Builder