Sap Sapcryptolib vulnerabilities
2 known vulnerabilities affecting sap/sapcryptolib.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2016-4407MEDIUMCVSS 6.5v5.555.382016-10-13
CVE-2016-4407 [MEDIUM] CWE-284 CVE-2016-4407: The DSA algorithm implementation in SAP SAPCRYPTOLIB 5.555.38 does not properly check signatures, wh
The DSA algorithm implementation in SAP SAPCRYPTOLIB 5.555.38 does not properly check signatures, which allows remote authenticated users to impersonate arbitrary users via unspecified vectors, aka SAP Security Note 2223008.
nvd
CVE-2014-8587HIGHCVSS 7.5≤ 5.555.372014-11-04
CVE-2014-8587 [HIGH] CWE-310 CVE-2014-8587: SAPCRYPTOLIB before 5.555.38, SAPSECULIB, and CommonCryptoLib before 8.4.30, as used in SAP NetWeave
SAPCRYPTOLIB before 5.555.38, SAPSECULIB, and CommonCryptoLib before 8.4.30, as used in SAP NetWeaver AS for ABAP and SAP HANA, allows remote attackers to spoof Digital Signature Algorithm (DSA) signatures via unspecified vectors.
nvd