Sap Se Sap Netweaver As Abap vulnerabilities
23 known vulnerabilities affecting sap_se/sap_netweaver_as_abap.
Total CVEs
23
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH6MEDIUM16
Vulnerabilities
Page 2 of 2
CVE-2020-6215MEDIUMCVSS 6.1fixed in 700fixed in 701+9 more2020-04-14
CVE-2020-6215 [MEDIUM] CWE-601 CVE-2020-6215: SAP NetWeaver AS ABAP Business Server Pages Test Application IT00, versions 700, 701, 702, 730, 731,
SAP NetWeaver AS ABAP Business Server Pages Test Application IT00, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, allows an attacker to redirect users to a malicious site due to insufficient URL validation and steal credentials of the victim, leading to URL Redirection vulnerability.
cvelistv5nvd
CVE-2020-6217MEDIUMCVSS 6.1fixed in 700fixed in 701+9 more2020-04-14
CVE-2020-6217 [MEDIUM] CWE-79 CVE-2020-6217: SAP NetWeaver AS ABAP Business Server Pages Test Application IT00, versions 700, 701, 702, 730, 731,
SAP NetWeaver AS ABAP Business Server Pages Test Application IT00, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, does not sufficiently encode user-controlled inputs, resulting in reflected Cross-Site Scripting (XSS) vulnerability.
cvelistv5nvd
CVE-2020-6229MEDIUMCVSS 6.1fixed in 700fixed in 701+14 more2020-04-14
CVE-2020-6229 [MEDIUM] CWE-79 CVE-2020-6229: SAP NetWeaver AS ABAP (Business Server Pages application CRM_BSP_FRAME), versions 700, 701, 702, 710
SAP NetWeaver AS ABAP (Business Server Pages application CRM_BSP_FRAME), versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 75A, 75B, 75C, 75D, 75E, does not sufficiently encode user controlled inputs, resulting in reflected Cross-Site Scripting (XSS) vulnerability.
cvelistv5nvd
← Previous2 / 2