Customer Relationship Management@7.02 Security Vulnerabilities and Issues — Customer Relationship Management@7.02 CVE List

Lucene search

SapCustomer Relationship Management7.02

3 matches found

CVE•added 2018/03/01 5:29 p.m.•1012 views

CVE-2018-2380

SAP CRM, 7.01, 7.02,7.30, 7.31, 7.33, 7.54, allows an attacker to exploit insufficient validation of path information provided by users, thus characters representing "traverse to parent directory" are passed through to the file APIs.

6.6CVSS6.4AI score0.45321EPSS

CVE•added 2014/02/14 3:55 p.m.•41 views

CVE-2014-1962

Gwsync in SAP CRM 7.02 EHP 2 allows remote attackers to obtain sensitive information via unspecified vectors, related to an XML External Entity (XXE) issue.

5CVSS6.4AI score0.0054EPSS

CVE•added 2013/12/13 8:8 p.m.•36 views

CVE-2013-7095

The XML parser (crm_flex_data) in SAP Customer Relationship Management (CRM) 7.02 EHP 2 has unknown impact and attack vectors related to an XML External Entity (XXE) issue.

10CVSS6.7AI score0.01273EPSS