Sap Se Sap S4 Hana vulnerabilities
3 known vulnerabilities affecting sap_se/sap_s4_hana.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-43002MEDIUMCVSS 4.3vS4CORE 102v103+3 more2025-05-13
CVE-2025-43002 [MEDIUM] CWE-472 CVE-2025-43002: SAP S4CORE OData meta-data property allows an authenticated attacker to access restricted informatio
SAP S4CORE OData meta-data property allows an authenticated attacker to access restricted information due to missing authorization check. This could cause a low impact on confidentiality but integrity and availability of the application are not impacted.
cvelistv5nvd
CVE-2020-26832HIGHCVSS 7.6fixed in 101fixed in 102+3 more2020-12-09
CVE-2020-26832 [HIGH] CWE-862 CVE-2020-26832: SAP AS ABAP (SAP Landscape Transformation), versions - 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_71
SAP AS ABAP (SAP Landscape Transformation), versions - 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_710, 2011_1_730, 2011_1_731, 2011_1_752, 2020 and SAP S4 HANA (SAP Landscape Transformation), versions - 101, 102, 103, 104, 105, allows a high privileged user to execute a RFC function module to which access should be restricted, however due to missing a
cvelistv5nvd
CVE-2020-26808HIGHCVSS 7.2fixed in 101fixed in 102+3 more2020-11-10
CVE-2020-26808 [HIGH] CVE-2020-26808: SAP AS ABAP(DMIS), versions - 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_710, 2011_1_730, 2011_1_731
SAP AS ABAP(DMIS), versions - 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_710, 2011_1_730, 2011_1_731, 2011_1_752, 2020 and SAP S4 HANA(DMIS), versions - 101, 102, 103, 104, 105, allows an authenticated attacker to inject arbitrary code into function module leading to code injection that can be executed in the application which affects the confidentiality, ava
cvelistv5nvd