Netweaver Abap@740 Security Vulnerabilities and Issues — Netweaver Abap@740 CVE List

Lucene search

SapNetweaver Abap740

9 matches found

CVE•added 2022/02/09 11:15 p.m.•90 views

CVE-2022-22545

A high privileged user who has access to transaction SM59 can read connection details stored with the destination for http calls in SAP NetWeaver Application Server ABAP and ABAP Platform - versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756.

4.9CVSS4.7AI score0.00362EPSS

CVE•added 2022/04/12 5:15 p.m.•82 views

CVE-2022-28215

SAP NetWeaver ABAP Server and ABAP Platform - versions 740, 750, 787, allows an unauthenticated attacker to redirect users to a malicious site due to insufficient URL validation. This could lead to the user being tricked to disclose personal information.

4.7CVSS5.6AI score0.00298EPSS

CVE•added 2021/06/16 3:15 p.m.•70 views

CVE-2021-27610

SAP NetWeaver ABAP Server and ABAP Platform, versions - 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 804, does not create information about internal and external RFC user in consistent and distinguished format, which could lead to improper authentication and may be exploited by malicious ...

9.8CVSS8.6AI score0.0055EPSS

CVE•added 2021/10/12 3:15 p.m.•56 views

CVE-2021-38178

The software logistics system of SAP NetWeaver AS ABAP and ABAP Platform versions - 700, 701, 702, 710, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, enables a malicious user to transfer ABAP code artifacts or content, by-passing the established quality gates. By this vulnerability malicious co...

8.8CVSS8.6AI score0.00446EPSS

CVE•added 2022/01/14 8:15 p.m.•54 views

CVE-2021-42067

In SAP NetWeaver AS for ABAP and ABAP Platform - versions 701, 702, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 786, an attacker authenticated as a regular user can use the S/4 Hana dashboard to reveal systems and services which they would not normally be allowed to see. No information a...

4.3CVSS4.5AI score0.00398EPSS

CVE•added 2021/07/14 12:15 p.m.•52 views

CVE-2021-33677

SAP NetWeaver ABAP Server and ABAP Platform, versions - 700, 702, 730, 731, 804, 740, 750, 784, expose functions to external which can lead to information disclosure.

7.5CVSS7.2AI score0.00197EPSS

CVE•added 2021/10/12 3:15 p.m.•52 views

CVE-2021-38181

SAP NetWeaver AS ABAP and ABAP Platform - versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.

7.5CVSS7.7AI score0.00468EPSS

CVE•added 2021/10/12 3:15 p.m.•51 views

CVE-2021-40496

SAP Internet Communication framework (ICM) - versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 785, allows an attacker with logon functionality, to exploit the authentication function by using POST and form field to repeat executions of the initial command by a GET request a...

4.3CVSS5.7AI score0.00416EPSS

CVE•added 2021/10/12 3:15 p.m.•47 views

CVE-2021-40495

There are multiple Denial-of Service vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 740, 750, 751, 752, 753, 754, 755. An unauthorized attacker can use the public SICF service /sap/public/bc/abap to reduce the performance of SAP NetWeaver Application Serve...

5.3CVSS5.9AI score0.00377EPSS