5 matches found
CVE-2023-32113
CVE-2023-32113 concerns SAP GUI for Windows (versions 7.70 and 8.0). A vulnerability allows an unauthorized attacker to obtain the victim’s NTLM authentication information by tricking the user into clicking a crafted shortcut file, with impact depending on the victim’s permissions. The root cause...
CVE-2017-6950
CVE-2017-6950 affects SAP GUI for Windows 7.2–7.5. The vulnerability allows remote code execution on the client by presenting crafted ABAP code, bypassing intended security policy restrictions (SAP Security Note 2407616). Exploitation would occur on vulnerable SAP GUI endpoints, enabling an attac...
CVE-2021-40503
CVE-2021-40503 affects SAP GUI for Windows (versions
CVE-2024-39600
CVE-2024-39600 affects SAP GUI for Windows. Under certain conditions, the memory may contain the password used to log on to an SAP system, allowing password disclosure and potential impersonation of the authenticated user. The vulnerability has a high confidentiality impact but does not affect in...
CVE-2021-27612
SAP GUI for Windows (versions ≤ 7.60 PL9 and 7.70 PL0) is affected by an input validation error that, in certain conditions, forwards users to a specific malicious website. This could lead to malware infections or phishing attempts aimed at stealing credentials. The issue is documented as a redir...