| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-27674 | Code Injection vulnerability in SAP NetWeaver Application Server Java (Web Dynpro Java) | SAP_SE | SAP NetWeaver Application Server Java (Web Dynpro Java) | Medium | 6.1 | 2026-04-14 00:06:50 | Deep Dive |
| CVE-2026-23686 | CRLF Injection vulnerability in SAP NetWeaver Application Server Java | SAP_SE | SAP NetWeaver Application Server Java | Low | 3.4 | 2026-02-10 03:02:37 | Deep Dive |
| CVE-2025-42919 | Information Disclosure vulnerability in SAP NetWeaver Application Server Java | SAP_SE | SAP NetWeaver Application Server Java | Medium | 5.3 | 2025-11-11 00:20:18 | Deep Dive |
| CVE-2025-42926 | Missing Authentication check in SAP NetWeaver Application Server Java | SAP_SE | SAP NetWeaver Application Server Java | Medium | 5.3 | 2025-09-09 02:10:04 | Deep Dive |
| CVE-2025-42978 | Insufficiently Secure Hostname Verification for Outbound TLS Connections in SAP NetWeaver Application Server Java | SAP_SE | SAP NetWeaver Application Server Java | Low | 3.5 | 2025-07-08 00:37:44 | Deep Dive |
| CVE-2025-42963 | Insecure Deserialization in SAP NetWeaver Application Server for Java (Log Viewer ) | SAP_SE | SAP NetWeaver Application Server for Java (Log Viewer ) | Critical | 9.1 | 2025-07-08 00:35:45 | Deep Dive |
| CVE-2025-27431 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server Java | SAP_SE | SAP NetWeaver Application Server Java | Medium | 5.4 | 2025-03-11 00:37:35 | Deep Dive |
| CVE-2025-24869 | Information Disclosure vulnerability in SAP NetWeaver Application Server Java | SAP_SE | SAP NetWeaver Application Server Java | Medium | 4.3 | 2025-02-11 00:36:52 | Deep Dive |
| CVE-2025-0054 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server Java | SAP_SE | SAP NetWeaver Application Server Java | Medium | 5.4 | 2025-02-11 00:32:57 | Deep Dive |
| CVE-2025-0067 | Missing Authorization check in SAP NetWeaver Application Server Java | SAP_SE | SAP NetWeaver Application Server Java | Medium | 6.3 | 2025-01-14 00:09:41 | Deep Dive |
| CVE-2024-47592 | Information Disclosure Vulnerability in SAP NetWeaver Application Server Java (Logon Application) | SAP_SE | SAP NetWeaver Application Server Java (Logon Application) | Medium | 5.3 | 2024-11-12 00:27:11 | Deep Dive |
| CVE-2024-33005 | Missing Authorization check in SAP NetWeaver Application Server (ABAP and Java),SAP Web Dispatcher and SAP Content Server | SAP_SE | SAP NetWeaver Application Server (ABAP and Java),SAP Web Dispatcher and SAP Content Server | Medium | 6.3 | 2024-08-13 03:47:45 | Deep Dive |
| CVE-2022-27669 | SAP NetWeaver Application Server 安全漏洞 | SAP SE | SAP NetWeaver Application Server for Java | 高危 | - | 2022-04-12 16:11:31 | Deep Dive |
| CVE-2022-22533 | SAP NetWeaver Application Server Java 资源管理错误漏洞 | SAP SE | SAP NetWeaver Application Server Java | 高危 | - | 2022-02-09 22:05:20 | Deep Dive |
| CVE-2022-22532 | SAP多个产品环境问题漏洞 | SAP SE | SAP NetWeaver Application Server Java | 超危 | - | 2022-02-09 22:05:19 | Deep Dive |
| CVE-2021-37535 | SAP NetWeaver Application Server Java 授权问题漏洞 | SAP SE | SAP NetWeaver Application Server Java (JMS Connector Service) | 超危 | - | 2021-09-14 11:21:27 | Deep Dive |
| CVE-2021-21491 | SAP Business Objects Business Intelligence Platform 输入验证错误漏洞 | SAP SE | SAP NetWeaver Application Server Java (Applications based on Web Dynpro Java) | 中危 | - | 2021-03-10 14:11:46 | Deep Dive |
| CVE-2020-6365 | SAP NetWeaver Application Server Java 输入验证错误漏洞 | SAP SE | SAP NetWeaver Application Server Java | 中危 | - | 2020-10-15 02:03:40 | Deep Dive |
| CVE-2020-6319 | SAP 跨站脚本漏洞 | SAP SE | SAP NetWeaver Application Server Java | 中危 | - | 2020-10-15 01:52:28 | Deep Dive |
| CVE-2020-6202 | SAP NetWeaver Application Server Java 代码问题漏洞 | SAP SE | SAP NetWeaver Application Server Java (User Management Engine) | 高危 | - | 2020-03-10 20:19:23 | Deep Dive |