36 matches found
SAP NetWeaver AS ABAP Missing Authorization Check (3704740)
The version of SAP NetWeaver AS ABAP and ABAP Platform detected on the remote host is affected by a missing authorization check vulnerability as referenced in the SAP Security Patch Day March 2026: - Due to a missing authorization check in SAP NetWeaver Application Server for ABAP, an authenticat...
CVE-2026-27688 Missing Authorization check in SAP NetWeaver Application Server for ABAP
Due to a missing authorization check in SAP NetWeaver Application Server for ABAP, an authenticated attacker with user privileges could read Database Analyzer Log Files via a specific RFC function module. The attacker with the necessary privileges to execute this function module could potentially...
CVE-2026-0506
Due to a Missing Authorization Check vulnerability in Application Server ABAP and ABAP Platform, an authenticated attacker could misuse an RFC function to execute form routines FORMs in the ABAP system. Successful exploitation could allow the attacker to write or modify data accessible via FORMs...
CVE-2026-0506 Missing Authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform
Due to a Missing Authorization Check vulnerability in Application Server ABAP and ABAP Platform, an authenticated attacker could misuse an RFC function to execute form routines FORMs in the ABAP system. Successful exploitation could allow the attacker to write or modify data accessible via FORMs...
CVE-2025-23187
Due to missing authorization check in an RFC enabled function module in transaction SDCCN, an unauthenticated attacker could generate technical meta-data. This leads to a low impact on integrity. There is no impact on confidentiality or availability...
SAP Financial Service Claims Management 安全漏洞
SAP Financial Service Claims Management is a financial services web platform from SAP, Germany. A security vulnerability exists in SAP Financial Service Claims Management that stems from a response discrepancy in the ICLUSERGETNAMEANDADDRESS RFC function, which could lead to user enumeration and...
EUVD-2014-8153
Malware in sbrugna...
EUVD-2016-8290
Malware in sbrugna...
EUVD-2020-19368
Malware in sbrugna...
EUVD-2014-3151
Malware in sbrugna...
EUVD-2025-20351
Malicious code in bioql PyPI...
EUVD-2025-3135
Malicious code in bioql PyPI...
EUVD-2025-10095
Malicious code in bioql PyPI...
CVE-2025-42954
CVE-2025-42954 affects SAP NetWeaver Business Warehouse CCAW. A privileged attacker can cause high CPU load by calling RFC-enabled function modules without input parameters, leading to reduced availability (low impact) with no confidentiality or integrity impact. Public details across sources con...
CVE-2013-7362
An unspecified RFC function in SAP CCMS Agent allows remote attackers to execute arbitrary commands via unknown vectors...
CVE-2025-23187
Due to missing authorization check in an RFC enabled function module in transaction SDCCN, an unauthenticated attacker could generate technical meta-data. This leads to a low impact on integrity. There is no impact on confidentiality or availability...
CVE-2025-23189
Due to missing authorization check in an RFC enabled function module in transaction SDCCN, an authenticated attacker could generate technical meta-data. This leads to a low impact on integrity. There is no impact on confidentiality or availability...
CVE-2025-23189 Missing Authorization Check in SAP NetWeaver and ABAP Platform (SDCCN)
Due to missing authorization check in an RFC enabled function module in transaction SDCCN, an authenticated attacker could generate technical meta-data. This leads to a low impact on integrity. There is no impact on confidentiality or availability...
CVE-2022-41264
Due to the unrestricted scope of the RFC function module, SAP BASIS - versions 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, 789, 790, 791, allows an authenticated non-administrator attacker to access a system class and execute any of its public methods with parameters provided by the attacke...
SAP NetWeaver AS ABAP Multiple Vulnerabilities
The remote SAP NetWeaver ABAP server may be affected by multiple vulnerabilies. - The ABAP Application Server of SAP NetWeaver as well as ABAP Platform does not check for authorization when a user executes some RFC function modules. This could lead to an attacker with basic user privileges to gai...