Sap Adaptive Server Enterprise — known CVE vulnerabilities
Every CVE whose affected-product data names Sap Adaptive Server Enterprise, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2022-31595 — CVSS 8.8 (high): SAP Financial Consolidation - version 1010,�does not perform necessary authorization checks for an authenticated user, resulting in…
CVE-2020-6241 — CVSS 8.8 (high): SAP Adaptive Server Enterprise, version 16.0, allows an authenticated user to execute crafted database queries to elevate privileges of…
CVE-2020-6243 — CVSS 8.8 (high): Under certain conditions, SAP Adaptive Server Enterprise (XP Server on Windows Platform), versions 15.7, 16.0, does not perform the…
CVE-2020-6295 — CVSS 7.8 (high): Under certain conditions the SAP Adaptive Server Enterprise, version 16.0, allows an attacker to access encrypted sensitive and…
CVE-2022-22528 — CVSS 7.8 (high): SAP Adaptive Server Enterprise (ASE) - version 16.0, installation makes an entry in the system PATH environment variable in Windows…
CVE-2018-2468 — CVSS 7.5 (high): Under certain conditions the backup server in SAP Adaptive Server Enterprise (ASE), versions 15.7 and 16.0, allows an attacker to access…
CVE-2018-2469 — CVSS 7.5 (high): Under certain conditions SAP Adaptive Server Enterprise (ASE), versions 15.7 and 16.0, allows an attacker to access information which would…
CVE-2020-6253 — CVSS 7.2 (high): Under certain conditions, SAP Adaptive Server Enterprise (Web Services), versions 15.7, 16.0, allows an authenticated user to execute…
CVE-2020-6250 — CVSS 6.8 (medium): SAP Adaptive Server Enterprise, version 16.0, allows an authenticated attacker to exploit certain misconfigured endpoints exposed over the…
CVE-2022-31594 — CVSS 6.7 (medium): A highly privileged user can exploit SUID-root program to escalate his privileges to root on a local Unix system.
CVE-2020-6259 — CVSS 6.5 (medium): Under certain conditions SAP Adaptive Server Enterprise, versions 15.7, 16.0, allows an attacker to access information which would…
CVE-2018-2457 — CVSS 6.5 (medium): Under certain conditions SAP Adaptive Server Enterprise, version 16.0, allows some privileged users to access information which would…
CVE-2019-0402 — CVSS 4.4 (medium): SAP Adaptive Server Enterprise, before versions 15.7 and 16.0, under certain conditions exposes some sensitive information to the admin…
CVE-2020-6317 — CVSS 3.5 (low): In certain situations, an attacker with regular user credentials and local access to an ASE cockpit installation can access sensitive…