Every CVE whose affected-product data names Sap Abap Platform, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2021-44231 — CVSS 9.8 (critical): Internally used text extraction reports allow an attacker to inject code that can be executed by the application. An attacker could thereby…
CVE-2024-22131 — CVSS 9.1 (critical): In SAP ABA (Application Basis) - versions 700, 701, 702, 731, 740, 750, 751, 752, 75C, 75I, an attacker authenticated as a user with a…
CVE-2020-6296 — CVSS 8.8 (high): SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 753, 755, allows an attacker to…
CVE-2020-6318 — CVSS 7.2 (high): A Remote Code Execution vulnerability exists in the SAP NetWeaver (ABAP Server, up to release 7.40) and ABAP Platform (> release…
CVE-2023-25615 — CVSS 6.8 (medium): Due to insufficient input sanitization, SAP ABAP - versions 751, 753, 753, 754, 756, 757, 791, allows an authenticated high privileged user…
CVE-2020-6181 — CVSS 5.8 (medium): Under some circumstances the SAML SSO implementation in the SAP NetWeaver (SAP_BASIS versions 702, 730, 731, 740 and SAP ABAP Platform…
CVE-2020-6310 — CVSS 4.3 (medium): Improper access control in SOA Configuration Trace component in SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 702, 730, 731…
CVE-2020-6299 — CVSS 4.3 (medium): SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 740, 750, 751, 752, 753, 754, 755, allows a business user to access the list of…
CVE-2024-27900 — CVSS 4.3 (medium): Due to missing authorization check, attacker with business user account in SAP ABAP Platform - version 758, 795, can change the privacy…
CVE-2020-6280 — CVSS 2.7 (low): SAP NetWeaver (ABAP Server) and ABAP Platform, versions 731, 740, 750, allows an attacker with admin privileges to access certain files…