| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-34684 | Information Disclosure vulnerability in SAP BusinessObjects Business Intelligence Platform (Scheduling) | SAP_SE | SAP BusinessObjects Business Intelligence Platform | Low | 3.7 | 2024-06-11 02:20:31 | Deep Dive |
| CVE-2024-28164 | Information Disclosure vulnerability in SAP NetWeaver AS Java (Guided Procedures) | SAP_SE | SAP NetWeaver AS Java | Medium | 5.3 | 2024-06-11 02:18:48 | Deep Dive |
| CVE-2024-34690 | Missing Authorization check in SAP Student Life Cycle Management (SLcM) | SAP_SE | SAP Student Life Cycle Management | Medium | 5.4 | 2024-06-11 02:17:14 | Deep Dive |
| CVE-2024-37176 | Missing Authorization check in SAP BW/4HANA Transformation and DTP | SAP_SE | SAP BW/4HANA Transformation and Data Transfer Process | Medium | 5.5 | 2024-06-11 02:14:46 | Deep Dive |
| CVE-2024-34686 | Cross-Site Scripting (XSS) vulnerability in SAP CRM (WebClient UI) | SAP_SE | SAP CRM WebClient UI | Medium | 6.1 | 2024-06-11 02:11:50 | Deep Dive |
| CVE-2024-34683 | Unrestricted file upload in SAP Document Builder (HTTP service) | SAP_SE | SAP Document Builder | Medium | 6.5 | 2024-06-11 02:08:47 | Deep Dive |
| CVE-2024-33001 | Denial of service (DOS) in SAP NetWeaver and ABAP platform | SAP_SE | SAP NetWeaver and ABAP platform | Medium | 6.5 | 2024-06-11 02:05:00 | Deep Dive |
| CVE-2024-34688 | Denial of service (DOS) in SAP NetWeaver AS Java (Meta Model Repository) | SAP_SE | SAP NetWeaver AS Java | High | 7.5 | 2024-06-11 02:02:22 | Deep Dive |
| CVE-2024-37178 | Cross-Site Scripting (XSS) vulnerabilities in SAP Financial Consolidation | SAP_SE | SAP Financial Consolidation | Medium | 5.0 | 2024-06-11 02:00:27 | Deep Dive |
| CVE-2024-37177 | Cross-Site Scripting (XSS) vulnerabilities in SAP Financial Consolidation | SAP_SE | SAP Financial Consolidation | High | 8.1 | 2024-06-11 01:58:37 | Deep Dive |
| CVE-2024-3049 | Booth: specially crafted hash can lead to invalid hmac being accepted by booth server | - | - | Medium | 5.9 | 2024-06-06 05:30:04 | Deep Dive |
| CVE-2024-5564 | Libndp: buffer overflow in route information length field | - | - | High | 8.1 | 2024-05-31 18:31:47 | Deep Dive |
| CVE-2024-33006 | File upload vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform | SAP_SE | SAP NetWeaver Application Server ABAP and ABAP Platform | Critical | 9.6 | 2024-05-14 04:16:07 | Deep Dive |
| CVE-2024-33004 | Insecure Storage vulnerability in SAP BusinessObjects Business Intelligence Platform (Webservices) | SAP_SE | SAP BusinessObjects Business Intelligence Platform (Webservices) | Medium | 4.3 | 2024-05-14 04:00:25 | Deep Dive |
| CVE-2024-33009 | SQL injection vulnerability in SAP Global Label Management (GLM) | SAP_SE | SAP Global Label Management (GLM) | Medium | 4.2 | 2024-05-14 03:58:54 | Deep Dive |
| CVE-2024-34687 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application server for ABAP and ABAP Platform | SAP_SE | SAP NetWeaver Application server for ABAP and ABAP Platform | Medium | 6.5 | 2024-05-14 03:56:24 | Deep Dive |
| CVE-2024-4138 | Missing Authorization Checks in SAP S/4 HANA (Manage Bank Statement Reprocessing Rules) | SAP_SE | SAP S/4 HANA (Manage Bank Statement Reprocessing Rules) | Medium | 4.3 | 2024-05-14 03:53:11 | Deep Dive |
| CVE-2024-4139 | Missing Authorization Checks in SAP S/4 HANA (Manage Bank Statement Reprocessing Rules) | SAP_SE | SAP S/4 HANA (Manage Bank Statement Reprocessing Rules) | Medium | 4.3 | 2024-05-14 03:51:31 | Deep Dive |
| CVE-2024-28165 | Cross site scripting vulnerability in SAP BusinessObjects Business Intelligence Platform | SAP_SE | SAP BusinessObjects Business Intelligence Platform | High | 8.1 | 2024-05-14 03:51:20 | Deep Dive |
| CVE-2024-33002 | Cross-Site Scripting (XSS) Vulnerability in SAP S/4HANA (Document Service Handler for DPS) | SAP_SE | SAP S/4HANA (Document Service Handler for DPS) | Medium | 6.1 | 2024-05-14 03:49:25 | Deep Dive |