Sap Netweaver Knowledge Management — known CVE vulnerabilities
Every CVE whose affected-product data names Sap Netweaver Knowledge Management, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2020-6284 — CVSS 9.0 (critical): SAP NetWeaver (Knowledge Management), versions - 7.30, 7.31, 7.40, 7.50, allows the automatic execution of script content in a stored file…
CVE-2020-6293 — CVSS 6.5 (medium): SAP NetWeaver (Knowledge Management), versions - 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to upload a malicious file and…
CVE-2021-21488 — CVSS 6.5 (medium): Knowledge Management versions 7.01, 7.02, 7.30, 7.31, 7.40, 7.50 allows a remote attacker with basic privileges to deserialize…
CVE-2020-6193 — CVSS 6.1 (medium): SAP NetWeaver (Knowledge Management ICE Service), versions 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to execute malicious…
CVE-2021-33707 — CVSS 6.1 (medium): SAP NetWeaver Knowledge Management allows remote attackers to redirect users to arbitrary websites and conduct phishing attacks via a URL…
CVE-2020-6326 — CVSS 5.4 (medium): SAP NetWeaver (Knowledge Management), version-7.30,7.31,7.40,7.50, allows an authenticated attacker to create malicious links in the UI…