CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Document Service handler obsolete in Data Provisioning Service does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability with low impact on Confidentiality and Integrity of the application...

6.1CVSS6AI score0.00182EPSS

Exploits0References1

NVD•added 2024/05/14 4:17 p.m.•7 views

CVE-2024-33002

6.1CVSS6.1AI score0.00182EPSS

Exploits0References2

Vulnrichment•added 2024/05/14 3:49 a.m.•9 views

CVE-2024-33002 Cross-Site Scripting (XSS) Vulnerability in SAP S/4HANA (Document Service Handler for DPS)

6.1CVSS6AI score0.00182EPSS

Exploits0References2

CVE•added 2024/05/14 3:49 a.m.•42 views

CVE-2024-33002

CVE-2024-33002 concerns the SAP Data Provisioning Service, specifically the Document Service handler, where user-supplied inputs are not sufficiently encoded, enabling Cross-Site Scripting (XSS). The vulnerability is described as having low impact on confidentiality and integrity. Several connect...

6.1CVSS6AI score0.00182EPSS

Exploits0References2

Cvelist•added 2024/05/14 3:49 a.m.•14 views

CVE-2024-33002 Cross-Site Scripting (XSS) Vulnerability in SAP S/4HANA (Document Service Handler for DPS)

6.1CVSS6.2AI score0.00182EPSS

Exploits0References2

Positive Technologies•added 2024/05/14 12:0 a.m.•2 views

PT-2024-25049 · Unknown · Data Provisioning Service

Name of the Vulnerable Software and Affected Versions: Data Provisioning Service affected versions not specified Description: The issue is related to the Document Service handler in the Data Provisioning Service, which does not properly encode user-controlled inputs. This results in a Cross-Site...

6.1CVSS6.1AI score0.00182EPSS

Exploits0References3

CNVD•added 2016/04/16 12:0 a.m.•1 views

SAP HANA Data Provisioning Agent Component Denial of Service Vulnerability

SAP HANA is a high-performance, real-time data analytics platform. the Data Provisioning Agent is one of the components that provides monitoring and proxying capabilities. A security vulnerability exists in the DP Agent component of SAP HANA that allows remote attackers to submit special requests...

7.5CVSS6.7AI score0.00499EPSS

Exploits0References1

CNVD•added 2016/04/16 12:0 a.m.•2 views

SAP HANA Data Provisioning Agent Component Information Disclosure Vulnerability

SAP HANA is a high-performance, real-time data analytics platform. the Data Provisioning Agent is one of the components that provides monitoring and proxying capabilities. The DP Agent component of SAP HANA fails to properly restrict the use of service functions, allowing remote attackers to...

7.5CVSS6.8AI score0.00408EPSS

Exploits0References1

NVD•added 2016/04/14 2:59 p.m.•15 views

CVE-2016-4017

The Data Provisioning Agent aka DP Agent in SAP HANA allows remote attackers to cause a denial of service process crash via unspecified vectors, aka SAP Security Note 2262710...

7.5CVSS7.4AI score0.00499EPSS

Exploits0References1

NVD•added 2016/04/14 2:59 p.m.•12 views

CVE-2016-4018

The Data Provisioning Agent aka DP Agent in SAP HANA does not properly restrict access to service functionality, which allows remote attackers to obtain sensitive information, gain privileges, and conduct unspecified other attacks via unspecified vectors, aka SAP Security Note 2262742...

7.5CVSS7.2AI score0.00408EPSS

Exploits0References1

Prion•added 2016/04/14 2:59 p.m.•12 views

Information disclosure

7.5CVSS7.3AI score0.00408EPSS

Exploits0References1

CVE•added 2016/04/14 2:0 p.m.•49 views

CVE-2016-4017

CVE-2016-4017 concerns SAP HANA’s Data Provisioning Agent (DP Agent). The vulnerability enables remote attackers to cause a denial of service (process crash) via unspecified vectors, as referenced by SAP Security Note 2262710. The Connected documents corroborate this description across multiple c...

7.5CVSS7.3AI score0.00499EPSS

Exploits0References1Affected Software1

CVE•added 2016/04/14 2:0 p.m.•40 views

CVE-2016-4018

The SAP HANA Data Provisioning Agent (DP Agent) component is affected. The DP Agent fails to properly restrict access to its service functionality, enabling remote attackers to obtain sensitive information and potentially gain privileges via unspecified vectors. Root cause cited as insufficient a...

7.5CVSS7.2AI score0.00408EPSS

Exploits0References1Affected Software1

Cvelist•added 2016/04/14 2:0 p.m.•17 views

CVE-2016-4018

7.2AI score0.00408EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by