Every CVE whose affected-product data names Sap Fiori Client, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2018-2488 — CVSS 7.8 (high): It is possible for a malware application installed on an Android device to send local push notifications with an empty message to SAP Fiori…
CVE-2018-2489 — CVSS 7.8 (high): Locally, without any permission, an arbitrary android application could delete the SSO configuration of SAP Fiori Client. SAP Fiori Client…
CVE-2018-2490 — CVSS 7.8 (high): The broadcast messages received by SAP Fiori Client are not protected by permissions. SAP Fiori Client version 1.11.5 in Google Play store…
CVE-2018-2491 — CVSS 7.8 (high): When opening a deep link URL in SAP Fiori Client with log level set to "Debug", the client application logs the URL to the log file. If…
CVE-2018-2485 — CVSS 7.7 (high): It is possible for a malicious application or malware to execute JavaScript in a SAP Fiori application. This can include reading and…
CVE-2021-33699 — CVSS 6.5 (medium): Task Hijacking is a vulnerability that affects the applications running on Android devices due to a misconfiguration in their…