Every CVE whose affected-product data names Sap Mobile Platform, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2015-8600 — CVSS 7.5 (high): The SysAdminWebTool servlets in SAP Mobile Platform allow remote attackers to bypass authentication and obtain sensitive information, gain…
CVE-2018-2459 — CVSS 7.5 (high): Users of an SAP Mobile Platform (version 3.0) Offline OData application, which uses Offline OData-supplied delta tokens (which is on by…
CVE-2015-5068 — CVSS 7.5 (high): XML external entity (XXE) vulnerability in SAP Mobile Platform 3 allows remote attackers to read arbitrary files or possibly have other…
CVE-2015-6664 — CVSS 6.8 (medium): XML external entity (XXE) vulnerability in the application import functionality in SAP Mobile Platform 2.3 allows remote attackers to read…
CVE-2015-7731 — CVSS 5.5 (medium): SAP Mobile Platform 3.0 SP05 ClientHub allows attackers to obtain the keystream and other sensitive information via the DataVault, aka SAP…
CVE-2015-2813 — CVSS 5.0 (medium): XML external entity (XXE) vulnerability in SAP Mobile Platform allows remote attackers to send requests to intranet servers via crafted…
CVE-2015-2818 — CVSS 5.0 (medium): XML external entity (XXE) vulnerability in SAP Mobile Platform 3 allows remote attackers to send requests to intranet servers via crafted…
CVE-2020-6177 — CVSS 4.3 (medium): SAP Mobile Platform, version 3.0, does not sufficiently validate an XML document accepted from an untrusted source which could lead to…