103 matches found
CVE-2022-35295
In SAP Host Agent SAPOSCOL - version 7.22, an attacker may use files created by saposcol to escalate privileges for themselves...
EUVD-2020-27342
Malware in sbrugna...
EUVD-2020-27384
Malware in sbrugna...
EUVD-2020-27336
Malware in sbrugna...
EUVD-2014-8429
Malware in sbrugna...
EUVD-2020-27333
Malware in sbrugna...
EUVD-2023-12117
Malicious code in bioql PyPI...
EUVD-2023-40846
Malicious code in bioql PyPI...
EUVD-2022-38185
Malicious code in bioql PyPI...
EUVD-2022-33947
Malicious code in bioql PyPI...
EUVD-2022-33213
Malicious code in bioql PyPI...
EUVD-2023-28541
Malicious code in bioql PyPI...
EUVD-2023-31261
Malicious code in bioql PyPI...
CVE-2023-0012
In SAP Host Agent Windows - versions 7.21, 7.22, an attacker who gains local membership to SAPLocalAdmin could be able to replace executables with a malicious file that will be started under a privileged account. Note that by default all user members of SAPLocaAdmin are denied the ability to logo...
CVE-2023-27498
SAP Host Agent SAPOSCOL - version 7.22, allows an unauthenticated attacker with network access to a server port assigned to the SAP Start Service to submit a crafted request which results in a memory corruption error. This error can be used to reveal but not modify any technical information about...
CVE-2023-24523
An attacker authenticated as a non-admin user with local access to a server port assigned to the SAP Host Agent Start Service - versions 7.21, 7.22, can submit a crafted ConfigureOutsideDiscovery request with an operating system command which will be executed with administrator privileges. The OS...
CVE-2022-29616
SAP Host Agent, SAP NetWeaver and ABAP Platform allow an attacker to leverage logical errors in memory management to cause a memory corruption...
CVE-2022-28774
Under certain conditions, the SAP Host Agent logfile shows information which would otherwise be restricted...
CVE-2020-6183
SAP Host Agent, version 7.21, allows an unprivileged user to read the shared memory or write to the shared memory by sending request to the main SAPOSCOL process and receive responses that may contain data read with user root privileges e.g. size of any directory, system hardware and OS details,...
CVE-2020-6234
SAP Host Agent, version 7.21, allows an attacker with admin privileges to use the operation framework to gain root privileges over the underlying operating system, leading to Privilege Escalation...