NotCVE - vendor:"Sap" product:"Advanced Business Application Programming Platform Kernel" version:"7.75"

4 results (0.006 seconds)

CVSS: 7.2EPSS: 0%CPEs: 10EXPL: 0

CVE-2019-0349

https://notcve.org/view.php?id=CVE-2019-0349

14 Aug 2019 — SAP Kernel (ABAP Debugger), versions KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73, KERNEL 7.21, 7.49, 7.53, 7.73, 7.75, 7.76, 7.77, allows a user to execute “Go to statement” without possessing the authorization S_DEVELOP DEBUG 02, resulting in Missing Authorization Check Kernel de SAP (ABAP Debugger), versiones KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22... • https://launchpad.support.sap.com/#/notes/2798743 • CWE-862: Missing Authorization •

CVSS: 8.8EPSS: 0%CPEs: 29EXPL: 0

CVE-2019-0270

https://notcve.org/view.php?id=CVE-2019-0270

12 Mar 2019 — ABAP Server of SAP NetWeaver and ABAP Platform fail to perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This has been corrected in the following versions: KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.74, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73, 7.74, 8.04, KERNEL 7.21, 7.45, 7.49, 7.53, 7.73, 7.74, 7.75, 8.04. El servidor ABAP de SAP NetWeaver y ABAP Platform no... • http://www.securityfocus.com/bid/107377 • CWE-862: Missing Authorization •

CVSS: 4.9EPSS: 0%CPEs: 25EXPL: 0

CVE-2019-0265

https://notcve.org/view.php?id=CVE-2019-0265

15 Feb 2019 — SLD Registration of ABAP Platform allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. Fixed in versions KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT,KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49,KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49. 7.73 KERNEL from 7.21 to 7.22, 7.45, 7.49, 7.53, 7.73, 7.75. El registro SLD de ABAP Platform permite que un atacante evite que usuarios legítimos accedan a un servicio, ya se... • http://www.securityfocus.com/bid/106972 • CWE-611: Improper Restriction of XML External Entity Reference •

CVSS: 8.1EPSS: 0%CPEs: 6EXPL: 0

CVE-2019-0255

https://notcve.org/view.php?id=CVE-2019-0255

15 Feb 2019 — SAP NetWeaver AS ABAP Platform, Krnl64nuc 7.74, krnl64UC 7.73, 7.74, Kernel 7.73, 7.74, 7.75, fails to validate type of installation for an ABAP Server system correctly. That behavior may lead to situation, where business user achieves access to the full SAP Menu, that is 'Easy Access Menu'. The situation can be misused by any user to leverage privileges to business functionality. SAP NetWeaver AS ABAP Platform, en Krnl64nuc 7.74, krnl64UC 7.73, 7.74, Kernel 7.73, 7.74, 7.75, fracasa a la hora de validar el... • http://www.securityfocus.com/bid/106987 • CWE-20: Improper Input Validation •