Lucene search
K
SapContent Server

6 matches found

CVE
CVE
added 2022/02/09 10:5 p.m.927 views

CVE-2022-22536

CVE-2022-22536 affects SAP NetWeaver components (ABAP/Java stacks), ABAP Platform, SAP Content Server 7.53, and SAP Web Dispatcher. The issue is HTTP request smuggling/concatenation caused by how the SAP ICM front end parses requests, enabling an unauthenticated attacker to prepend arbitrary data...

10CVSS9.2AI score0.97945EPSS
In wildWeb
CVE
CVE
added 2023/09/12 2:21 a.m.109 views

CVE-2023-40309

CVE-2023-40309 affects SAP CommonCryptoLib and is caused by insufficient authentication checks, enabling possible privilege escalation for an authenticated user and potential reading/modification/deletion of restricted data. The vulnerability is rated CRITICAL (CVSSv3.1: 9.8, AV:N/AC:L/PR:N/UI:N/...

9.8CVSS9.7AI score0.00748EPSS
CVE
CVE
added 2023/09/12 1:21 a.m.82 views

CVE-2023-40308

The CVE-2023-40308 issue affects SAP CommonCryptoLib and is caused by memory corruption triggered by an unauthenticated crafted request sent to an open port. The resulting crash makes the target component unavailable, with no impact on confidentiality or integrity reported. Evidence across multip...

7.5CVSS7.7AI score0.00622EPSS
CVE
CVE
added 2024/08/13 3:47 a.m.66 views

CVE-2024-33005

The CVE-2024-33005 issue affects SAP Web Dispatcher, SAP NetWeaver Application Server (ABAP and Java), and SAP Content Server. Root cause: missing authorization checks in the local system allow admin users to impersonate other users and perform unintended actions. Impact: low confidentiality but ...

6.3CVSS6.3AI score0.00208EPSS
CVE
CVE
added 2023/03/14 4:53 a.m.62 views

CVE-2023-26457

Technical details about CVE-2023-26457 are not publicly available in the provided connected documents. Monitor for updates.

6.1CVSS6AI score0.00418EPSS
CVE
CVE
added 2015/06/02 2:0 p.m.47 views

CVE-2015-4157

CVE-2015-4157 affects SAP Content Server. The available documents describe a remote denial-of-service risk (service termination) via unspecified vectors, as referenced by SAP Security Note 2127995. The primary sources do not specify the exact vulnerable component, affected versions, root cause, e...

5CVSS6.9AI score0.0128EPSS