|
198971
|
5.3 |
MEDIUM
Network
|
sap
|
businessobjects_business_intelligence_platform
|
Certain settings page(s) in SAP Business Objects Business Intelligence Platform (CMC), version 4.2, generates error messages that can give enterprise private-network related information which would o…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2020-6189
|
2024-11-21 14:35 |
2020-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198972
|
8.8 |
HIGH
Network
|
sap
|
erp
s\/4_hana
|
VAT Pro-Rata reports in SAP ERP (SAP_APPL versions 600, 602, 603, 604, 605, 606, 616 and SAP_FIN versions 617, 618, 700, 720, 730) and SAP S/4 HANA (versions 100, 101, 102, 103, 104) do not perform n…
|
CWE-862
Missing Authorization
|
CVE-2020-6188
|
2024-11-21 14:35 |
2020-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198973
|
4.9 |
MEDIUM
Network
|
sap
|
netweaver_guided_procedures
|
SAP NetWeaver (Guided Procedures), versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently validate an XML document input from a compromised admin, leading to Denial of Service.
|
CWE-611
XXE
|
CVE-2020-6187
|
2024-11-21 14:35 |
2020-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198974
|
7.5 |
HIGH
Network
|
sap
|
host_agent
|
SAP Host Agent, version 7.21, allows an attacker to cause a slowdown in processing of username/password-based authentication requests of the SAP Host Agent, leading to Denial of Service.
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-6186
|
2024-11-21 14:35 |
2020-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198975
|
5.4 |
MEDIUM
Network
|
sap
|
netweaver
s\/4hana
|
Under certain conditions ABAP Online Community in SAP NetWeaver (SAP_BASIS version 7.40) and SAP S/4HANA (SAP_BASIS versions 7.50, 7.51, 7.52, 7.53, 7.54), allows an authenticated attacker to store a…
|
CWE-79
Cross-site Scripting
|
CVE-2020-6185
|
2024-11-21 14:35 |
2020-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198976
|
6.1 |
MEDIUM
Network
|
sap
|
netweaver
s\/4hana
|
Under certain conditions, ABAP Online Community in SAP NetWeaver (SAP_BASIS version 7.40) and SAP S/4HANA (SAP_BASIS versions 7.50, 7.51, 7.52, 7.53, 7.54), does not sufficiently encode user-controll…
|
CWE-79
Cross-site Scripting
|
CVE-2020-6184
|
2024-11-21 14:35 |
2020-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198977
|
6.5 |
MEDIUM
Network
|
sap
|
host_agent
|
SAP Host Agent, version 7.21, allows an unprivileged user to read the shared memory or write to the shared memory by sending request to the main SAPOSCOL process and receive responses that may contai…
|
CWE-862
Missing Authorization
|
CVE-2020-6183
|
2024-11-21 14:35 |
2020-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198978
|
5.8 |
MEDIUM
Network
|
sap
|
netweaver
abap_platform
|
Under some circumstances the SAML SSO implementation in the SAP NetWeaver (SAP_BASIS versions 702, 730, 731, 740 and SAP ABAP Platform (SAP_BASIS versions 750, 751, 752, 753, 754), allows an attacker…
|
NVD-CWE-Other
|
CVE-2020-6181
|
2024-11-21 14:35 |
2020-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198979
|
4.3 |
MEDIUM
Network
|
sap
|
mobile_platform
|
SAP Mobile Platform, version 3.0, does not sufficiently validate an XML document accepted from an untrusted source which could lead to partial denial of service. Since SAP Mobile Platform does not al…
|
CWE-20
Improper Input Validation
|
CVE-2020-6177
|
2024-11-21 14:35 |
2020-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198980
|
8.8 |
HIGH
Network
|
accusoft
|
imagegear
|
An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll JPEG jpegread precision parser of the Accusoft ImageGear 19.5.0 library. A specially crafted JPEG file can cause an out-of…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-6069
|
2024-11-21 14:35 |
2020-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
