10 matches found
CVE-2021-33683
SAP Web Dispatcher and Internet Communication Manager ICM, versions - KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.53, 7.73, WEBDISP 7.53, 7.73, 7.77, 7.81, 7.82, 7.83,...
Design/Logic Flaw
SAP Web Dispatcher and Internet Communication Manager ICM, versions - KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.53, 7.73, WEBDISP 7.53, 7.73, 7.77, 7.81, 7.82, 7.83,...
CVE-2021-33683
CVE-2021-33683 affects SAP Web Dispatcher and Internet Communication Manager (ICM) components, including KRNL32NUC/64NUC, KRNL32UC/64UC, WEBDISP, and KERNEL across multiple 7.x versions up to 7.83. The vulnerability stems from incorrect handling of invalid HTTP headers, specifically Transfer-Enco...
CVE-2021-33663
SAP NetWeaver AS ABAP, versions - KRNL32NUC - 7.22,7.22EXT, KRNL32UC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81,7.82,7.83,7.84, allows an unauthorized attacker to insert cleartext commands due to improper...
CVE-2021-27630
SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server) versions including KRNL32NUC (7.22, 7.22EXT), KRNL64NUC (7.22, 7.22EXT, 7.49), KRNL64UC (8.04, 7.22, 7.22EXT, 7.49, 7.53, 7.73), and KERNEL (7.22, 8.04, 7.49, 7.53, 7.73) are affected by CVE-2021-27630. An unauthenticated attacker can s...
CVE-2021-27607
Summary. CVE-2021-27607 affects SAP NetWeaver ABAP Server/Platform (Dispatcher). Multiple KRNL and KERNEL versions (e.g., KRNL32NUC 7.22/7.22EXT; KRNL64UC 7.22/7.49/7.53/7.73; KERNEL 7.22/8.04/7.49/7.53/7.73/7.77/7.81/7.82/7.83) are vulnerable. An unauthenticated attacker can send a specially cra...
CVE-2021-27606
CVE-2021-27606 affects SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server) across multiple kernels/versions (e.g., KRNL32NUC KRNL64NUC KRNL64UC and KERNEL series). The flaw is an input validation issue in method EncOAMParamStore() that allows an unauthenticated attacker to send a crafted...
Authorization
ABAP Server of SAP NetWeaver and ABAP Platform fail to perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has been corrected in the following versions: KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64N...
CVE-2019-0270
ABAP Server of SAP NetWeaver and ABAP Platform fail to perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has been corrected in the following versions: KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64N...
CVE-2019-0270
ABAP Server of SAP NetWeaver and ABAP Platform fail to perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has been corrected in the following versions: KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64N...