Sap Landscape Management — known CVE vulnerabilities
Every CVE whose affected-product data names Sap Landscape Management, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2019-0261 — CVSS 9.8 (critical): Under certain circumstances, SAP HANA Extended Application Services, advanced model (XS advanced) does not perform authentication checks…
CVE-2019-0249 — CVSS 7.5 (high): Under certain conditions SAP Landscape Management (VCM 3.0) allows an attacker to access information which would otherwise be restricted.
CVE-2020-6192 — CVSS 7.2 (high): SAP Landscape Management, version 3.0, allows an attacker with admin privileges to execute malicious commands with root privileges in SAP…
CVE-2020-6191 — CVSS 7.2 (high): SAP Landscape Management, version 3.0, allows an attacker with admin privileges to execute malicious executables with root privileges in…
CVE-2020-6236 — CVSS 7.2 (high): SAP Landscape Management, version 3.0, and SAP Adaptive Extensions, version 1.0, allows an attacker with admin_group privileges to change…
CVE-2024-39593 — CVSS 6.9 (medium): SAP Landscape Management allows an authenticated user to read confidential data disclosed by the REST Provider Definition response…
CVE-2023-26458 — CVSS 6.8 (medium): An information disclosure vulnerability exists in SAP Landscape Management - version 3.0, enterprise edition. It allows an authenticated…
CVE-2019-0380 — CVSS 4.9 (medium): Under certain conditions, SAP Landscape Management enterprise edition, before version 3.0, allows custom secure parameters’ default…