CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2026/01/09 9:32 a.m.•5 views

CVE-2023-25618

SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, 791, has multiple vulnerabilities in an unused class for error handling in which an attacker authenticated as a non-administrative user can craft a request with...

6.5CVSS6.9AI score0.00543EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-27476

Malware in sbrugna...

5.4CVSS6AI score0.00313EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-1128

Malware in sbrugna...

7.2CVSS7AI score0.00447EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-31048

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00543EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-30671

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00176EPSS

Exploits0References2

The Hacker News•added 2025/08/19 1:0 p.m.•11 views

Public Exploit for Chained SAP Flaws Exposes Unpatched Systems to Remote Code Execution

A new exploit combining two critical, now-patched security flaws in SAP NetWeaver has emerged in the wild, putting organizations at risk of system compromise and data theft. The exploit in question chains together CVE-2025-31324 and CVE-2025-42999 to bypass authentication and achieve remote code...

10CVSS10AI score0.43664EPSS

Exploits19

Vulnrichment•added 2025/07/08 6:57 a.m.•3 views

CVE-2025-42956 Multiple vulnerabilities in SAP NetWeaver Application Server ABAP

SAP NetWeaver Application Server ABAP and ABAP Platform allows an unauthenticated attacker to create a malicious link which they can make publicly available. When an authenticated victim clicks on this malicious link, injected input data will be used by the web site page generation to create...

6.1CVSS6.6AI score0.00476EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 2:27 a.m.•3 views

CVE-2023-27270

SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, 791, has multiple vulnerabilities in a class for test purposes in which an attacker authenticated as a non-administrative user can craft a request with certain...

6.5CVSS6.9AI score0.00543EPSS

Exploits0References1

Tenable Nessus•added 2025/05/16 12:0 a.m.•12 views

SAP Netweaver Visual Composer Multiple Vulnerabilities (May 2025)

SAP NetWeaver Visual Composer is affected by multiple vulnerabilities, including the following: - SAP NetWeaver Visual Composer Metadata Uploader is vulnerable when a privileged user can upload untrusted or malicious content which, when deserialized, could potentially lead to a compromise of...

10CVSS8.7AI score0.43664EPSS

Exploits19References23

NCSC•added 2025/01/14 11:50 a.m.•3 views

Vulnerabilities fixed in SAP products

SAP has fixed vulnerabilities in SAP, NetWeaver and ABAP. The vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform include incorrect authentication controls and weak access controls, which can be exploited by authenticated attackers to escalate their privileges and gain...

9.9CVSS8.3AI score0.00184EPSS

Exploits0References1

NCSC•added 2020/08/11 12:0 a.m.•2 views

Vulnerabilities fixed in SAP Netweaver

SAP has fixed several vulnerabilities in SAP Netweaver. These vulnerabilities allow malicious actors to remotely bypass authentication, execute arbitrary code, conduct a cross-site scripting attack, upload files and view sensitive information. SAP has released updates to address these...

9CVSS7AI score0.00892EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by