Every CVE whose affected-product data names Sap Crystal Reports, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2010-3032 — CVSS 10.0 (critical): Integer overflow in the OBGIOPServerWorker::extractHeader function in the ebus-3-3-2-6.dll module in SAP Crystal Reports 2008 allows remote…
CVE-2019-0285 — CVSS 9.8 (critical): The .NET SDK WebForm Viewer in SAP Crystal Reports for Visual Studio (fixed in version 2010) discloses sensitive database information…
CVE-2010-2590 — CVSS 9.3 (critical): Heap-based buffer overflow in the CrystalReports12.CrystalPrintControl.1 ActiveX control in PrintControl.dll 12.3.2.753 in SAP Crystal…
CVE-2018-2427 — CVSS 8.8 (high): SAP BusinessObjects Business Intelligence Suite, versions 4.10 and 4.20, and SAP Crystal Reports (version for Visual Studio .NET, Version…
CVE-2020-6208 — CVSS 8.2 (high): SAP Business Objects Business Intelligence Platform (Crystal Reports), versions- 4.1, 4.2, allows an attacker with basic authorization to…
CVE-2014-5506 — CVSS 6.8 (medium): Double free vulnerability in SAP Crystal Reports allows remote attackers to execute arbitrary code via crafted connection string record in…
CVE-2014-5505 — CVSS 6.8 (medium): Stack-based buffer overflow in SAP Crystal Reports allows remote attackers to execute arbitrary code via a crafted data source string in an…