29 matches found
CVE-2026-0487 DLL Hijacking vulnerability in SAProuter on Microsoft Windows
SAProuter on Microsoft Windows allows an unauthenticated attacker to load library DLL files from an untrusted location, allowing them to execute malicious code on the system. This could enable the attacker to hijack the DLL loading process and achieve arbitrary code execution. This has high impac...
CVE-2026-0487
CVE-2026-0487 concerns SAProuter on Microsoft Windows, where an unauthenticated attacker can load DLLs from an untrusted location, enabling arbitrary code execution through DLL hijacking. The root cause is improper DLL loading behavior that can be hijacked to execute malicious code, impacting con...
EUVD-2026-43583
SAProuter on Microsoft Windows allows an unauthenticated attacker to load library DLL files from an untrusted location, allowing them to execute malicious code on the system. This could enable the attacker to hijack the DLL loading process and achieve arbitrary code execution. This has high impac...
EUVD-2013-6619
Malware in sbrugna...
EUVD-2022-32165
Malicious code in bioql PyPI...
CVE-2022-27668
Depending on the configuration of the route permission table in file 'saprouttab', it is possible for an unauthenticated attacker to execute SAProuter administration commands in SAP NetWeaver and ABAP Platform - versions KERNEL 7.49, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, KRNL64NUC 7.49, KRNL64UC...
SAP SAProuter Improper Access Control
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Improper Access Control product: SAP® SAProuter vulnerable version: see section "Vulnerable / tested versions" fixed version: see SAP security note 3158375 CVE number:...
CVE-2022-27668
Depending on the configuration of the route permission table in file 'saprouttab', it is possible for an unauthenticated attacker to execute SAProuter administration commands in SAP NetWeaver and ABAP Platform - versions KERNEL 7.49, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, KRNL64NUC 7.49, KRNL64UC...
CVE-2022-27668
Depending on the configuration of the route permission table in file 'saprouttab', it is possible for an unauthenticated attacker to execute SAProuter administration commands in SAP NetWeaver and ABAP Platform - versions KERNEL 7.49, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, KRNL64NUC 7.49, KRNL64UC...
CVE-2022-27668
CVE-2022-27668 describes an improper access control in SAProuter related to the saprouttab route-permission configuration. An unauthenticated remote attacker can issue SAProuter administration commands, potentially stopping SAProuter and severely impacting availability. Affected components/versio...
SAP NetWeaver 和 ABAP Platform 安全漏洞
SAP NetWeaver and SAP ABAP Platform are both products of SAP, a service-oriented, integrated application platform. SAP NetWeaver is an integrated service-oriented application platform that provides a development and runtime environment for SAP applications.SAP ABAP Platform is an ABAP-based SAP...
PT-2022-3187 · Sap · Krnl64Uc +4
Name of the Vulnerable Software and Affected Versions: SAP NetWeaver and ABAP Platform versions KERNEL 7.49, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, KRNL64NUC 7.49, KRNL64UC 7.49, SAP ROUTER 7.53, 7.22 Description: The issue is related to errors in authorization in the saprouttab file, which can allo...
CVE-2014-8589
CVE-2014-8589 affects SAP Network Interface Router (SAProuter) version 40.4. The issue is an integer overflow in SAProuter that allows remote attackers to cause a denial of service (resource consumption) via crafted requests. The NVD entry lists a base score of 5.0 (Medium) with network access, l...
SAP Router - Integer Overflow vulnerability
Application: SAP Network Interface Router SAProuter Versions Affected: SAP 40.4 – Win64/Linux x8664 Vendor URL: http://www.sap.com Vulnerability: XXE Reported: 16.06.2014 Vendor response: 17.06.2014 Date of Public Advisory: 17.10.2014 Reference: SAP Security Note 2037492 Authors: Roman Bazhin...
SAProuter Detection
The script sends a connection request to the server and attempts to extract the version number from the reply. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifie...
SAProuter Remote Authentication Bypass Vulnerability
SAProuter is prone to an authentication-bypass vulnerability. Copyright C 2014 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...
SAProuter Remote Authentication Bypass (Note 1853140)
The remote host has a version of SAProuter that is affected by an authentication bypass vulnerability. When started with the '-X' flag, SAProuter permits routing to itself given a 'saprouttab' that allows access to its port. An unauthenticated, remote attacker can issue commands to SAProuter...
SAProuter Detection
Binary data saprouterdetect.nbin...
CVE-2013-7093
SAP Network Interface Router SAProuter 39.3 SP4 allows remote attackers to bypass authentication and modify the configuration via unspecified vectors...
Authentication flaw
SAP Network Interface Router SAProuter 39.3 SP4 allows remote attackers to bypass authentication and modify the configuration via unspecified vectors...