Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SAP_SE — Vulnerabilities & Security Advisories 527

Browse all 527 CVE security advisories affecting SAP_SE. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by SAP_SE:SAP BusinessObjects Business Intelligence PlatformSAP NetWeaver Application server for ABAP and ABAP PlatformSAP NetWeaver Application Server for ABAPSAP NetWeaver Application Server ABAPSAP GUI for WindowsSAP NetWeaver Application Server JavaSAP NetWeaver Application Server ABAP and ABAP PlatformSAP Business ConnectorSAP Commerce CloudSAP CRM WebClient UISAP NetWeaver AS ABAP and ABAP PlatformSAP Enable NowSAP Fiori App (Intercompany Balance Reconciliation)SAP Supplier Relationship Management (Live Auction Cockpit)SAP NetWeaver Enterprise PortalSAP NetWeaverSAP Solution ManagerSAP NetWeaver AS JavaSAPCARSAP CommerceSAP NetWeaver Application Server ABAP (applications based on SAP GUI for HTML)SAP Business One (SLD)SAP NetWeaver AS for JAVA (Adobe Document Services)SAP HCM (My Timesheet Fiori 2.0 application)SAP Supplier Relationship ManagementSAP CommonCryptoLibSAP BusinessObjects Business Intelligence Platform (Web Intelligence)SAP BusinessObjects Web IntelligenceSAP Cloud ConnectorSAP Financial Consolidation
CVE IDTitleCVSSSeverityPublished
CVE-2024-42371 Multiple vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform — SAP NetWeaver Application Server for ABAP and ABAP PlatformCWE-862 5.4 Medium2024-09-10
CVE-2024-41729 Information Disclosure vulnerability in the SAP NetWeaver BW (BEx Analyzer) — SAP NetWeaver BW (BEx Analyzer)CWE-359 4.3 Medium2024-09-10
CVE-2024-39591 Missing Authorization check in SAP Document Builder — SAP Document BuilderCWE-862 4.3 Medium2024-08-13
CVE-2024-42373 Missing Authorization Check in SAP Student Life Cycle Management (SLcM) — SAP Student Life Cycle Management (SLcM)CWE-862 4.3 Medium2024-08-13
CVE-2024-41734 Missing Authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform — SAP NetWeaver Application Server ABAP and ABAP PlatformCWE-862 4.3 Medium2024-08-13
CVE-2024-41736 Information Disclosure vulnerability in SAP Permit to Work — SAP Permit to WorkCWE-200 4.3 Medium2024-08-13
CVE-2024-41731 Multiple Unrestricted File Upload vulnerabilities in SAP BusinessObjects Business Intelligence Platform — SAP BusinessObjects Business Intelligence PlatformCWE-434 3.1 Low2024-08-13
CVE-2024-28166 Multiple Unrestricted File Upload vulnerabilities in SAP BusinessObjects Business Intelligence Platform — SAP BusinessObjects Business Intelligence PlatformCWE-434 3.7 Low2024-08-13
CVE-2024-42375 Multiple Unrestricted File Upload vulnerabilities in SAP BusinessObjects Business Intelligence Platform — SAP BusinessObjects Business Intelligence PlatformCWE-434 4.3 Medium2024-08-13
CVE-2024-41732 Improper Access Control in SAP Netweaver Application Server ABAP — SAP NetWeaver Application Server ABAPCWE-284 4.7 Medium2024-08-13
CVE-2024-41737 Server-Side Request Forgery (SSRF) in SAP CRM ABAP (Insights Management) — SAP CRM ABAP (Insights Management)CWE-918 5.0 Medium2024-08-13
CVE-2024-41733 Information Disclosure Vulnerability in SAP Commerce — SAP CommerceCWE-200 5.3 Medium2024-08-13
CVE-2024-41735 Cross-Site Scripting (XSS) vulnerability in SAP Commerce Backoffice — SAP Commerce BackofficeCWE-79 5.4 Medium2024-08-13
CVE-2024-33005 Missing Authorization check in SAP NetWeaver Application Server (ABAP and Java),SAP Web Dispatcher and SAP Content Server — SAP NetWeaver Application Server (ABAP and Java),SAP Web Dispatcher and SAP Content ServerCWE-862 6.3 Medium2024-08-13
CVE-2024-42377 Multiple Missing Authorization Check vulnerabilities in SAP Shared Service Framework — SAP Shared Service FrameworkCWE-862 4.3 Medium2024-08-13
CVE-2024-42376 Multiple Missing Authorization Check vulnerabilities in SAP Shared Service Framework — SAP Shared Service FrameworkCWE-862 6.5 Medium2024-08-13
CVE-2024-33003 Information Disclosure Vulnerability in SAP Commerce Cloud — SAP Commerce CloudCWE-200 7.4 High2024-08-13
CVE-2024-42374 XML injection in SAP BEx Web Java Runtime Export Web Service — SAP BEx Web Java Runtime Export Web ServiceCWE-91 8.2 High2024-08-13
CVE-2024-41730 Missing Authentication check in SAP BusinessObjects Business Intelligence Platform — SAP BusinessObjects Business Intelligence PlatformCWE-862 9.8 Critical2024-08-13
CVE-2024-34692 [CVE-2024-34692] Unrestricted File upload vulnerability in SAP Enable Now — SAP Enable NowCWE-434 3.3 Low2024-07-09
CVE-2024-37180 [CVE-2024-37180] Information Disclosure vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform — SAP NetWeaver Application Server for ABAP and ABAP PlatformCWE-200 4.1 Medium2024-07-09
CVE-2024-39596 [CVE-2024-39596] Missing Authorization check vulnerability in SAP Enable Now — SAP Enable NowCWE-862 4.3 Medium2024-07-09
CVE-2024-39599 [CVE-2024-39599] Protection Mechanism Failure in SAP NetWeaver Application Server for ABAP and ABAP Platform — SAP NetWeaver Application Server for ABAP and ABAP PlatformCWE-693 4.7 Medium2024-07-09
CVE-2024-37171 [CVE-2024-37171] Server-Side Request Forgery (SSRF) in SAP Transportation Management (Collaboration Portal) — SAP Transportation Management (Collaboration Portal)CWE-918 5.0 Medium2024-07-09
CVE-2024-39600 [CVE-2024-39600] Information Disclosure vulnerability in SAP GUI for Windows — SAP GUI for WindowsCWE-200 5.0 Medium2024-07-09
CVE-2024-34689 [CVE-2024-34689] Server-Side Request Forgery in SAP Business Workflow (WebFlow Services) — SAP Business Workflow (WebFlow Services)CWE-918 5.0 Medium2024-07-09
CVE-2024-37172 [CVE-2024-37172] Missing Authorization check in SAP S/4HANA Finance (Advanced Payment Management) — SAP S/4HANA Finance (Advanced Payment Management)CWE-862 5.4 Medium2024-07-09
CVE-2024-39595 [CVE-2024-39594] Multiple Cross-Site Scripting (XSS) vulnerabilities in SAP Business Warehouse - Business Planning and Simulation — SAP Business Warehouse - Business Planning and SimulationCWE-79 5.4 Medium2024-07-09
CVE-2024-39594 [CVE-2024-39594] Multiple Cross-Site Scripting (XSS) vulnerabilities in SAP Business Warehouse - Business Planning and Simulation — SAP Business Warehouse - Business Planning and SimulationCWE-79 6.1 Medium2024-07-09
CVE-2024-37175 [Multiple CVEs] Multiple vulnerabilities in SAP CRM (WebClient UI) — SAP CRM WebClient UICWE-862 4.3 Medium2024-07-09

This page lists every published CVE security advisory associated with SAP_SE. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.