目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1310

100%
请我们喝杯咖啡

SAP 厂商漏洞列表 / CVE 中文分析 159

SAP 厂商相关 159 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

SAP 是全球领先的企业应用软件供应商,其核心产品涵盖 ERP、CRM 及数据分析平台。历史漏洞多集中于远程代码执行、SQL 注入及身份验证绕过,常因复杂集成架构引发越权访问。近期重大事件涉及多个高严重性 CVE,影响部分云端及本地部署版本。厂商持续发布安全补丁以修复逻辑缺陷,建议用户及时更新并强化访问控制策略,降低潜在攻击面。

Top products by SAP: NetWeaver AS for ABAP and ABAP Platform SAP Fiori Client SAP BusinessObjects Business Intelligence Platform SAP HANA extended application services NetWeaver AS ABAP (BSP Framework) NetWeaver Application Server for ABAP and ABAP Platform BusinessObjects Business Intelligence Platform (Web Services) SAP Internet Graphics Server (IGS) NetWeaver AS for Java SAP BusinessObjects Business Intelligence SAP HANA CRM (WebClient UI) Application Interface Framework (Message Dashboard) Business Planning and Consolidation SAP NetWeaver AS Java (ServerCore) NetWeaver Process Integration SAP Adaptive Server Enterprise (ASE) Solution Manager SAP BusinessObjects Business Intelligence Suite SAP Enterprise Financial Services Solution Manager (BSP Application) NetWeaver ABAP Server and ABAP Platform NetWeaver AS ABAP and ABAP Platform HCM Fiori App My Forms (Fiori 2.0) Bank Account Management (Manage Banks) Commerce Webservices 2.0 (Swagger UI) Sourcing and SAP Contract Lifecycle Management BusinessObjects Business Intelligence Platform Disclosure Management BASIS
CVE ID标题CVSS风险等级Published
CVE-2023-26460 SAP NetWeaver Application Server 访问控制错误漏洞 — NetWeaver AS for JavaCWE-284 5.3 Medium2023-03-14
CVE-2023-26457 SAP Content Server 跨站脚本漏洞 — Content ServerCWE-79 6.1 Medium2023-03-14
CVE-2023-25618 SAP NetWeaver Application Server 资源管理错误漏洞 — NetWeaver AS for ABAP and ABAP PlatformCWE-400 6.5 Medium2023-03-14
CVE-2023-26459 SAP NetWeaver AS 代码问题漏洞 — NetWeaver AS for ABAP and ABAP PlatformCWE-918 7.4 High2023-03-14
CVE-2023-25617 SAP Business Objects 操作系统命令注入漏洞 — Business Objects (Adaptive Job Server)CWE-78 9.0 Critical2023-03-14
CVE-2023-25616 SAP Business Objects Business Intelligence Platform 注入漏洞 — Business Objects Business Intelligence Platform (CMC)CWE-74 9.9 Critical2023-03-14
CVE-2023-25615 SAP ABAP Platform SQL注入漏洞 — ABAP PlatformCWE-89 6.8 Medium2023-03-14
CVE-2023-24526 SAP NetWeaver Application Server Java 访问控制错误漏洞 — NetWeaver AS Java for Classload ServiceCWE-306 5.3 Medium2023-03-14
CVE-2023-23857 SAP NetWeaver AS 授权问题漏洞 — NetWeaver AS for JavaCWE-287 9.9 Critical2023-03-14
CVE-2023-25614 SAP NetWeaver AS 跨站脚本漏洞 — NetWeaver AS ABAP (BSP Framework)CWE-79 6.1 Medium2023-02-14
CVE-2023-24530 SAP BusinessObjects Business Intelligence Platform 代码问题漏洞 — BusinessObjects Business Intelligence Platform (CMC)CWE-434 8.4 High2023-02-14
CVE-2023-24529 BSP 跨站脚本漏洞 — NetWeaver AS ABAP (Business Server Pages application)CWE-79 6.1 Medium2023-02-14
CVE-2023-24528 SAP ERP 安全漏洞 — Fiori apps 1.0 for travel management in SAP ERP (My Travel Requests)CWE-862 6.5 Medium2023-02-14
CVE-2023-24525 SAP CRM 跨站脚本漏洞 — CRM (WebClient UI)CWE-79 4.3 Medium2023-02-14
CVE-2023-24524 SAP S/4 HANA 安全漏洞 — S/4 HANA (Map Treasury Correspondence Format Data)CWE-862 6.5 Medium2023-02-14
CVE-2023-24523 SAP Host Agent 安全漏洞 — Host Agent ServiceCWE-668 8.8 High2023-02-14
CVE-2023-24522 SAP NetWeaver AS 跨站脚本漏洞 — NetWeaver AS ABAP (BSP Framework)CWE-79 6.1 Medium2023-02-14
CVE-2023-24521 SAP NetWeaver AS 跨站脚本漏洞 — NetWeaver AS ABAP (BSP Framework)CWE-79 6.1 Medium2023-02-14
CVE-2023-23860 SAP NetWeaver AS 输入验证错误漏洞 — NetWeaver AS for ABAP and ABAP PlatformCWE-601 6.1 Medium2023-02-14
CVE-2023-23859 SAP NetWeaver AS 跨站脚本漏洞 — NetWeaver AS for ABAP and ABAP PlatformCWE-79 6.1 Medium2023-02-14
CVE-2023-23855 SAP Solution Manager 输入验证错误漏洞 — Solution ManagerCWE-601 6.5 Medium2023-02-14
CVE-2023-23854 SAP NetWeaver Application Server 安全漏洞 — NetWeaver AS ABAP and ABAP PlatformCWE-862 3.8 Low2023-02-14
CVE-2023-23853 SAP NetWeaver Application Server 输入验证错误漏洞 — NetWeaver Application Server for ABAP and ABAP PlatformCWE-601 6.1 Medium2023-02-14
CVE-2023-23852 SAP Solution Manager 跨站脚本漏洞 — Solution ManagerCWE-79 6.1 Medium2023-02-14
CVE-2023-23851 SAP Business Planning and Consolidation 代码问题漏洞 — Business Planning and ConsolidationCWE-434 5.4 Medium2023-02-14
CVE-2023-0025 SAP Solution Manager 跨站脚本漏洞 — Solution Manager (BSP Application)CWE-79 6.5 Medium2023-02-14
CVE-2023-0024 SAP Solution Manager 跨站脚本漏洞 — Solution Manager (BSP Application)CWE-79 6.5 Medium2023-02-14
CVE-2023-0023 SAP Bank Account Management 信息泄露漏洞 — Bank Account Management (Manage Banks)CWE-200 4.5 Medium2023-01-10
CVE-2023-0022 SAP BusinessObjects Analysis(Edition For Olap) 代码注入漏洞 — BusinessObjects Business Intelligence platform (Analysis edition for OLAP)CWE-94 9.9 Critical2023-01-10
CVE-2023-0018 SAP BusinessObjects Business Intelligence Platform 跨站脚本漏洞 — BusinessObjects Business Intelligence Platform (Central management console)CWE-79 10.0 Critical2023-01-10

本页汇总了 SAP 厂商截至目前公开的全部 159 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。