| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-41366 | Information Disclosure vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform | SAP_SE | SAP NetWeaver Application Server ABAP and ABAP Platform | Medium | 5.3 | 2023-11-14 01:01:08 | Deep Dive |
| CVE-2023-42477 | Server-Side Request Forgery in SAP NetWeaver AS Java (GRMG Heartbeat application) | SAP_SE | SAP NetWeaver AS Java | Medium | 6.5 | 2023-10-10 01:37:55 | Deep Dive |
| CVE-2023-40309 | Missing Authorization check in SAP CommonCryptoLib | SAP_SE | SAP CommonCryptoLib | Critical | 9.8 | 2023-09-12 02:21:19 | Deep Dive |
| CVE-2023-40624 | Code Injection vulnerability in SAP NetWeaver AS ABAP (applications based on Unified Rendering) | SAP_SE | SAP NetWeaver AS ABAP (applications based on Unified Rendering) | Medium | 5.5 | 2023-09-12 02:00:31 | Deep Dive |
| CVE-2023-41367 | Missing Authentication check in SAP NetWeaver (Guided Procedures) | SAP_SE | SAP NetWeaver (Guided Procedures) | Medium | 5.3 | 2023-09-12 01:59:56 | Deep Dive |
| CVE-2023-40308 | Memory Corruption vulnerability in SAP CommonCryptoLib | SAP_SE | SAP CommonCryptoLib | High | 7.5 | 2023-09-12 01:21:15 | Deep Dive |
| CVE-2023-37492 | Missing Authorization check in SAP NetWeaver AS ABAP and ABAP Platform | SAP_SE | SAP NetWeaver AS ABAP and ABAP Platform | Medium | 4.9 | 2023-08-08 00:47:40 | Deep Dive |
| CVE-2023-37488 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Process Integration | SAP_SE | SAP NetWeaver Process Integration | Medium | 6.1 | 2023-08-08 00:43:04 | Deep Dive |
| CVE-2023-35874 | Improper authentication vulnerability in SAP NetWeaver AS ABAP and ABAP Platform | SAP_SE | SAP NetWeaver AS ABAP and ABAP Platform | Medium | 6.0 | 2023-07-11 02:47:12 | Deep Dive |
| CVE-2023-35873 | Missing Authentication check in SAP NetWeaver Process Integration (Runtime Workbench) | SAP_SE | SAP NetWeaver Process Integration (Runtime Workbench) | Medium | 6.5 | 2023-07-11 02:42:19 | Deep Dive |
| CVE-2023-35872 | Missing Authentication check in SAP NetWeaver Process Integration (Message Display Tool) | SAP_SE | SAP NetWeaver Process Integration (Message Display Tool) | Medium | 6.5 | 2023-07-11 02:41:33 | Deep Dive |
| CVE-2023-33989 | Directory Traversal vulnerability in SAP NetWeaver (BI CONT ADD ON) | SAP_SE | SAP NetWeaver (BI CONT ADD ON) | High | 8.7 | 2023-07-11 02:28:50 | Deep Dive |
| CVE-2023-31405 | Log Injection vulnerability in SAP NetWeaver AS for Java (Log Viewer) | SAP_SE | SAP NetWeaver AS for Java (Log Viewer) | Medium | 5.3 | 2023-07-11 02:23:27 | Deep Dive |
| CVE-2023-33985 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Enterprise Portal | SAP_SE | SAP NetWeaver Enterprise Portal | Medium | 6.1 | 2023-06-13 02:45:01 | Deep Dive |
| CVE-2023-33984 | Cross-Site Scripting (XSS) vulnerability in NetWeaver (Design Time Repository) | SAP_SE | SAP NetWeaver (Design Time Repository) | Medium | 6.4 | 2023-06-13 02:44:24 | Deep Dive |
| CVE-2023-32114 | Denial of Service in SAP NetWeaver | SAP_SE | SAP NetWeaver (Change and Transport System) | Low | 2.7 | 2023-06-13 02:38:20 | Deep Dive |
| CVE-2023-30744 | Improper access control during application start-up in SAP AS NetWeaver JAVA. | SAP_SE | SAP AS NetWeaver JAVA | High | 8.2 | 2023-05-09 01:36:33 | Deep Dive |
| CVE-2023-29186 | Directory/Path Traversal vulnerability in SAP NetWeaver. | SAP | NetWeaver (BI CONT ADDON) | High | 8.7 | 2023-04-11 03:08:50 | Deep Dive |
| CVE-2023-29185 | Denial of Service (DOS) in SAP NetWeaver AS for ABAP (Business Server Pages) | SAP | NetWeaver AS for ABAP (Business Server Pages) | Medium | 5.3 | 2023-04-11 03:08:03 | Deep Dive |
| CVE-2023-28763 | Denial of Service in SAP NetWeaver AS for ABAP and ABAP Platform | SAP | NetWeaver AS for ABAP and ABAP Platform | Medium | 6.5 | 2023-04-11 02:52:08 | Deep Dive |