Every CVE whose affected-product data names Sap Biller Direct, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-41207 — CVSS 6.1 (medium): SAP Biller Direct allows an unauthenticated attacker to craft a legitimate looking URL. When clicked by an unsuspecting victim, it will use…
CVE-2023-42479 — CVSS 6.1 (medium): An unauthenticated attacker can embed a hidden access to a Biller Direct URL in a frame which, when loaded by the user, will submit a…