Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 10:42 a.m.5 views

CVE-2022-26102

Due to missing authorization check, SAP NetWeaver Application Server for ABAP - versions 700, 701, 702, 731, allows an authenticated attacker, to access content on the start screen of any transaction that is available with in the same SAP system even if he/she isn't authorized for that transactio...

5.5CVSS6.4AI score0.00126EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2019-1043

Malware in sbrugna...

8.8CVSS8.8AI score0.00435EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/07/08 12:36 a.m.5 views

CVE-2025-42968 Missing Authorization check in SAP NetWeaver (RFC enabled function module)

SAP NetWeaver allows an authenticated non-administrative user to call the remote-enabled function module which could grants access to non-sensitive information about the SAP system and OS without requiring any specific knowledge or controlled conditions. This leads to a low impact on...

5CVSS0.0016EPSS
Exploits0References2
CVE
CVEadded 2025/07/08 12:35 a.m.14 views

CVE-2025-42961

CVE-2025-42961 involves SAP NetWeaver Application Server for ABAP, where a missing authorization check allows an authenticated user with high privileges to read sensitive data from database tables. The underlying issue is improper validation of user permissions leading to confidentiality impact (...

4.9CVSS6.1AI score0.00208EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/07/08 12:34 a.m.2 views

CVE-2025-42953 Missing Authorization check in SAP NetWeaver Application Server for ABAP

SAP Netweaver System Configuration does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This could completely compromise the integrity and availability with no impact on confidentiality of the system...

8.1CVSS6.7AI score0.00227EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 11:57 a.m.2 views

CVE-2025-0067

Due to a missing authorization check on service endpoints in the SAP NetWeaver Application Server Java, an attacker with standard user role can create JCo connection entries, which are used for remote function calls from or to the application server. This could lead to low impact on...

6.3CVSS7AI score0.00057EPSS
Exploits0References1
NVD
NVDadded 2025/04/08 8:15 a.m.8 views

CVE-2025-31331

SAP NetWeaver allows an attacker to bypass authorization checks, enabling them to view portions of ABAP code that would normally require additional validation. Once logged into the ABAP system, the attacker can run a specific transaction that exposes sensitive system code without proper...

4.3CVSS0.00026EPSS
Exploits0References2
CNNVD
CNNVDadded 2020/12/08 12:0 a.m.5 views

SAP Netweaver 授权问题漏洞

SAP Netweaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform provides a development and runtime environment for SAP applications. An authorization issue vulnerability exists in SAP Netweaver AS JAVA P2P Cluster Communication versions 7.11,...

10CVSS7.3AI score0.03949EPSS
Exploits1References7
Rows per page
Query Builder