Every CVE whose affected-product data names Sap Sap R 3, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2002-1577 — CVSS 7.5 (high): SAP R/3 2.0B to 4.6D installs several clients with default users and passwords, which allows remote attackers to gain privileges via the…
CVE-2002-1578 — CVSS 7.5 (high): The default installation of SAP R/3, when using Oracle and SQL*net V2 3.x, 4.x, and 6.10, allows remote attackers to obtain arbitrary…
CVE-2003-1035 — CVSS 7.5 (high): The default installation of SAP R/3 46C/D allows remote attackers to bypass account locking by using the RFC API instead of the SAPGUI to…
CVE-2005-4815 — CVSS 7.5 (high): SAP 6.4 before 6.40 patch 4, 6.2 before 6.20 patch 1364, 4.6 before 4.6D patch 1767, 45 before 45B patch 913, 40 before 40B patch 1008, and…
CVE-2005-1691 — CVSS 5.0 (medium): Directory traversal vulnerability in Internet Graphics Server in SAP before 6.40 Patch 11 allows remote attackers to read arbitrary files…