Sap Advanced Business Application Programming Platform Krnl64Uc vulnerabilities
4 known vulnerabilities affecting sap/advanced_business_application_programming_platform_krnl64uc.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2019-0304CRITICALCVSS 9.8v7.21v7.21ext+4 more2019-06-12
CVE-2019-0304 [CRITICAL] CWE-74 CVE-2019-0304: FTP Function of SAP NetWeaver AS ABAP Platform, versions- KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KR
FTP Function of SAP NetWeaver AS ABAP Platform, versions- KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73, KERNEL 7.21, 7.45, 7.49, 7.53, 7.73, allows an attacker to inject code or specifically manipulated command that can be
nvd
CVE-2019-0270HIGHCVSS 8.8v7.21v7.21ext+6 more2019-03-12
CVE-2019-0270 [HIGH] CWE-862 CVE-2019-0270: ABAP Server of SAP NetWeaver and ABAP Platform fail to perform necessary authorization checks for an
ABAP Server of SAP NetWeaver and ABAP Platform fail to perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has been corrected in the following versions: KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.74, KRNL64UC 7.21
nvd
CVE-2019-0255HIGHCVSS 8.1v7.73v7.742019-02-15
CVE-2019-0255 [HIGH] CWE-20 CVE-2019-0255: SAP NetWeaver AS ABAP Platform, Krnl64nuc 7.74, krnl64UC 7.73, 7.74, Kernel 7.73, 7.74, 7.75, fails
SAP NetWeaver AS ABAP Platform, Krnl64nuc 7.74, krnl64UC 7.73, 7.74, Kernel 7.73, 7.74, 7.75, fails to validate type of installation for an ABAP Server system correctly. That behavior may lead to situation, where business user achieves access to the full SAP Menu, that is 'Easy Access Menu'. The situation can be misused by any user to leverage privileges
nvd
CVE-2019-0265MEDIUMCVSS 4.9v7.21v7.21ext+4 more2019-02-15
CVE-2019-0265 [MEDIUM] CWE-611 CVE-2019-0265: SLD Registration of ABAP Platform allows an attacker to prevent legitimate users from accessing a se
SLD Registration of ABAP Platform allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. Fixed in versions KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT,KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49,KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49. 7.73 KERNEL from
nvd