Lucene search
K

56 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:20 a.m.14 views

CVE-2021-33693

SAP Cloud Connector, version - 2.0, allows an authenticated administrator to modify a configuration file to inject malicious codes that could potentially lead to OS command execution...

7.7CVSS6.8AI score0.00522EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:20 a.m.17 views

CVE-2021-33694

SAP Cloud Connector, version - 2.0, does not sufficiently encode user-controlled inputs, allowing an attacker with Administrator rights, to include malicious codes that get stored in the database, and when accessed, could be executed in the application, resulting in Stored Cross-Site Scripting...

5.9CVSS6.3AI score0.0045EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:20 a.m.10 views

CVE-2021-33692

SAP Cloud Connector, version - 2.0, allows the upload of zip files as backup. This backup file can be tricked to inject special elements such as '..' and '/' separators, for attackers to escape outside of the restricted location to access files or directories...

7.5CVSS7AI score0.01132EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-1020

Malware in sbrugna...

9.8CVSS9.5AI score0.01272EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.22 views

EUVD-2019-1019

Malware in sbrugna...

9.8CVSS9.5AI score0.02744EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-20371

Malware in sbrugna...

5.9CVSS5.9AI score0.0045EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-20372

Malware in sbrugna...

9.1CVSS7AI score0.00541EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-20369

Malware in sbrugna...

7.5CVSS5.9AI score0.01132EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-20370

Malware in sbrugna...

7.7CVSS6.2AI score0.00522EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-53531

Malicious code in bioql PyPI...

3.5CVSS4.7AI score0.0027EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-22958

Malicious code in bioql PyPI...

7.4CVSS7.4AI score0.00544EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/08/12 2:9 a.m.9 views

CVE-2025-42955 Missing authorization check in SAP Cloud Connector

Due to a missing authorization check in SAP Cloud Connector, an attacker on an adjacent network with low privileges could send a crafted request to the endpoint responsible for testing LDAP connections. A successful exploit could lead to reduced performance, hence a low-impact on availability of...

3.5CVSS0.00401EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/12 12:0 a.m.4 views

SAP Cloud Connector 安全漏洞

SAP Cloud Connector is a tool from SAP, Germany, used to establish a secure connection between local systems and SAP Cloud Platform. A security vulnerability exists in SAP Cloud Connector that stems from a lack of authorization checks and could lead to degraded service performance...

3.5CVSS6.2AI score0.00401EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 2:14 a.m.10 views

CVE-2023-49578

SAP Cloud Connector - version 2.0, allows an authenticated user with low privilege to perform Denial of service attack from adjacent UI by sending a malicious request which leads to low impact on the availability and no impact on confidentiality or Integrity of the application...

3.5CVSS6.9AI score0.0027EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:49 p.m.9 views

CVE-2021-33695

Potentially, SAP Cloud Connector, version - 2.0 communication with the backend is accepted without sufficient validation of the certificate...

9.1CVSS7AI score0.00541EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 1:8 p.m.8 views

CVE-2024-25642

Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the...

7.4CVSS6.6AI score0.00544EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2024/05/15 12:0 a.m.586 views

SAP Cloud Connector 2.16.1 Missing Validation

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Tolerating Self-Signed Certificates product: SAP® Cloud Connector vulnerable version: 2.15.0 - 2.16.1 Portable and Installer fixed version: 2.16.2 Portable and Installer...

7.4CVSS7.1AI score0.00544EPSS
Exploits1
CNVD
CNVD
added 2024/02/19 12:0 a.m.7 views

SAP Cloud Connector Trust Management Issues Vulnerability (CNVD-2024-10198)

SAP Cloud Connector is a tool from SAP Germany for establishing a secure connection between local systems and SAP Cloud Platform. A trust management issue vulnerability exists in SAP Cloud Connector version 2.0, which stems from incorrect certificate validation, and can be exploited by an attacke...

7.4CVSS6.7AI score0.00544EPSS
Exploits1References1
OSV
OSV
added 2024/02/13 3:15 a.m.4 views

CVE-2024-25642

Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the...

7.4CVSS5.8AI score0.00544EPSS
Exploits1References3
Prion
Prion
added 2024/02/13 3:15 a.m.16 views

Input validation

Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the...

4CVSS7AI score0.00544EPSS
Exploits1References2
Rows per page
Query Builder