14 matches found
EUVD-2018-14264
Malware in sbrugna...
EUVD-2020-27356
Malware in sbrugna...
CVE-2020-6206
SAP Cloud Platform Integration for Data Services, version 1.0, allows user inputs to be reflected as error or warning massages. This could mislead the victim to follow malicious instructions inserted by external attackers, leading to Cross Site Request Forgery...
SAP Cloud Connector Trust Management Issue Vulnerability
SAP Cloud Connector is a connector for connecting to the SAP Cloud Platform from SAP Germany. SAP Cloud Connector 2.0 suffers from a trust management issue vulnerability that stems from SAP Cloud Connector being able to communicate with the backend without sufficiently validating certificates. An...
SAP Cloud Connector Path Traversal Vulnerability
SAP Cloud Connector is used to establish a secure connection between a computer and the SAP cloud platform. A path traversal vulnerability exists in SAP Cloud Connector version 2.0, which arises by allowing the upload of zip files as backups. Such backup files can be spoofed by injecting special...
CVE-2020-6206
SAP Cloud Platform Integration for Data Services, version 1.0, allows user inputs to be reflected as error or warning massages. This could mislead the victim to follow malicious instructions inserted by external attackers, leading to Cross Site Request Forgery...
CVE-2020-6206
SAP Cloud Platform Integration for Data Services, version 1.0, allows user inputs to be reflected as error or warning massages. This could mislead the victim to follow malicious instructions inserted by external attackers, leading to Cross Site Request Forgery...
Cross site request forgery (csrf)
SAP Cloud Platform Integration for Data Services, version 1.0, allows user inputs to be reflected as error or warning massages. This could mislead the victim to follow malicious instructions inserted by external attackers, leading to Cross Site Request Forgery...
CVE-2020-6206
SAP Cloud Platform Integration for Data Services, version 1.0, allows user inputs to be reflected as error or warning massages. This could mislead the victim to follow malicious instructions inserted by external attackers, leading to Cross Site Request Forgery...
CVE-2018-2409
Improper session management when using SAP Cloud Platform 2.0 Connectivity Service and Cloud Connector. Under certain conditions, data of some other user may be shown or modified when using an application built on top of SAP Cloud Platform...
CVE-2018-2409
Improper session management when using SAP Cloud Platform 2.0 Connectivity Service and Cloud Connector. Under certain conditions, data of some other user may be shown or modified when using an application built on top of SAP Cloud Platform...
Input validation
Improper session management when using SAP Cloud Platform 2.0 Connectivity Service and Cloud Connector. Under certain conditions, data of some other user may be shown or modified when using an application built on top of SAP Cloud Platform...
CVE-2018-2409
The CVE-2018-2409 issue affects SAP Cloud Platform 2.0 components (Connectivity Service and Cloud Connector). The root cause is improper session management, which can allow data from another user to be shown or modified when applications built on SAP Cloud Platform are used. In practice, this lea...
CVE-2018-2409
Improper session management when using SAP Cloud Platform 2.0 Connectivity Service and Cloud Connector. Under certain conditions, data of some other user may be shown or modified when using an application built on top of SAP Cloud Platform...