SAP Security Advisory version HDB 2.00 - SAP Security Notes

 

Advisories for HDB 2.00

Below you can find all Security Advisories that related to your search term.

Note Component Description CVSS Severity Patchday Initially released on Category Affected system type Valid for
2978768 HAN-DB-SEC [CVE-2020-26834 ] Improper authentication in SAP HANA database 4.2 Medium 2020-12 2020/12/08 Program error HANA Platform HDB 1.00 HDB 2.00
3000663 BC-CST-WDP [CVE-2021-33683] HTTP Request Smuggling in SAP Web Dispatcher and Internet Communication Manager 5.4 Medium 2021-07 2021/07/13 Program error Kernel HDB 2.00 KERNEL 7.21-7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.73 KERNEL 7.77 KERNEL 7.81 KERNEL 7.82 KERNEL 7.83 KRNL32NUC 7.21 KRNL32NUC 7.21EXT KRNL32UC 7.21 KRNL32UC 7.21EXT KRNL64NUC 7.21 KRNL64NUC 7.21EXT KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.21 KRNL64UC 7.21EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 KRNL64UC 7.73 SAP_EXTENDED_APP_SERVICES 1 WEBDISP 7.53 WEBDISP 7.73 WEBDISP 7.77 WEBDISP 7.81 WEBDISP 7.82 WEBDISP 7.83 XS_ADVANCED_RUNTIME 1.00
3057378 BC-CST-WDP Missing Authentication check in SAP Web Dispatcher 8.8 High 2021-08 2021/08/10 Program error Kernel HDB 2.00 KERNEL 7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.77 KERNEL 7.81 KERNEL 7.83 KERNEL 7.84 KERNEL 8.04 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 KRNL64UC 8.04 SAP_EXTENDED_APP_SERVICES 1 WEBDISP 7.22_EXT WEBDISP 7.49 WEBDISP 7.53 WEBDISP 7.77 WEBDISP 7.81 XS_ADVANCED_RUNTIME 1.00
3051787 BC-IAM-SSO-CCL [CVE-2021-38177] Null Pointer Dereference vulnerability in SAP CommonCryptoLib 7.5 High 2021-09 2021/09/14 Program error ABAP Java HANA platform HDB 2.00 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64NUC 7.53 KRNL64NUC 7.22EX2 KRNL64NUC 7.77 KRNL64UC 8.04 KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 KRNL64UC 7.77 KRNL64UC 7.81 KRNL64UC 7.85 KRNL64UC 7.83 KRNL64UC 7.84 WEBDISP 7.49 WEBDISP 7.53 WEBDISP 7.77
3111293 BC-CST-WDP [CVE-2022-28773] Denial of service (DOS) in SAP Web Dispatcher and SAP Netweaver (Internet Communication Manager) 4.9 Medium 2022-04 2022/04/12 Program error Kernel HDB 2.00 KERNEL 7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.86 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 WEBDISP 7.53 WEBDISP 7.77 WEBDISP 7.81 WEBDISP 7.85 WEBDISP 7.86
3233899 BC-CST-WDP [CVE-2023-33987] Request smuggling and request concatenation vulnerability in SAP Web Dispatcher 8.6 High 2023-07 2023/07/11 Program error Kernel HDB 2.00 KERNEL 7.49 KERNEL 7.53 KERNEL 7.54 KERNEL 7.77 KERNEL 7.81 KERNEL 7.85 KERNEL 7.88 KERNEL 7.89 KERNEL 7.90 KRNL64NUC 7.49 KRNL64UC 7.49 KRNL64UC 7.53 SAP_EXTENDED_APP_SERVICES 1 WEBDISP 7.49 WEBDISP 7.53 WEBDISP 7.54 WEBDISP 7.77 WEBDISP 7.81 WEBDISP 7.85 WEBDISP 7.88 WEBDISP 7.89 WEBDISP 7.90 XS_ADVANCED_RUNTIME 1.00
3340735 BC-CST-WDP [CVE-2023-35871] Memory Corruption vulnerability in SAP Web Dispatcher 7.7 High 2023-07 2023/07/11 Program error Kernel HDB 2.00 KERNEL 7.53 KERNEL 7.54 KERNEL 7.77 KERNEL 7.85 KERNEL 7.89 KERNEL 7.91 KERNEL 7.92 KERNEL 7.93 KRNL64UC 7.53 SAP_EXTENDED_APP_SERVICES 1 WEBDISP 7.53 WEBDISP 7.54 WEBDISP 7.77 WEBDISP 7.85 WEBDISP 7.89 WEBDISP 7.91 WEBDISP 7.92 WEBDISP 7.93 XS_ADVANCED_RUNTIME 1.00
3410615 HAN-AS-XS [CVE-2023-44487 ] Denial of service (DOS) in SAP HANA XS Classic and HANA XS Advanced 7.5 High 2024-03 2024/03/12 Program error HANA platform HDB 2.00 XS_ADVANCED_RUNTIME 1.00
3340576 BC-IAM-SSO-CCL [CVE-2023-40309] Missing Authorization check in SAP CommonCryptoLib 9.8 Hot News 2023-09 2023/09/12 Program error Kernel, HANA platform, Web Dispatcher CONTSERV 6.50 CONTSERV 7.53 CONTSERV 7.54 CRYPTOLIB 8 HDB 2.00 KERNEL 7.22 KERNEL 7.53 KERNEL 7.54 KERNEL 7.77 KERNEL 7.85 KERNEL 7.89 KERNEL 7.91 KERNEL 7.92 KERNEL 7.93 KERNEL 8.04 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.53 KRNL64UC 8.04 SAPHOSTAGENT 7.22 SAPSSOEXT 17 SAP_EXTENDED_APP_SERVICES 1 WEBDISP 7.22_EXT WEBDISP 7.53 WEBDISP 7.54 WEBDISP 7.77 WEBDISP 7.85 WEBDISP 7.89 XS_ADVANCED_RUNTIME 1.00
3327896 BC-IAM-SSO-CCL [CVE-2023-40308] Memory Corruption vulnerability in SAP CommonCryptoLib 7.5 High 2023-09 2023/09/12 Program error Kernel CONTSERV 6.50 CONTSERV 7.53 CONTSERV 7.54 CRYPTOLIB 8 HDB 2.00 KERNEL 7.22 KERNEL 7.53 KERNEL 7.54 KERNEL 7.77 KERNEL 7.85 KERNEL 7.89 KERNEL 7.91 KERNEL 7.92 KERNEL 7.93 KERNEL 8.04 KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.53 KRNL64UC 8.04 SAPHOSTAGENT 7.22 SAPSSOEXT 17 SAP_EXTENDED_APP_SERVICES 1 WEBDISP 7.22_EXT WEBDISP 7.53 WEBDISP 7.54 WEBDISP 7.77 WEBDISP 7.85 WEBDISP 7.89 XS_ADVANCED_RUNTIME 1.00
2992154 HAN-DB-SEC [CVE-2021-21474] SAML Assertion Signature MD5 Digest Algorithm Vulnerability in SAP HANA Database 4.1 Medium 2021-02 2021/02/09 Consulting SAP HANA Platform HDB 1.00 HDB 2.00
3017378 HAN-DB-SEC [CVE-2021-21484] Possible authentication bypass in SAP HANA LDAP scenarios 7.7 High 2021-03 2021/03/09 Program error SAP HANA Platform HDB 2.00
ABEX logo

SecurityBridge helps in prioritizing SAP patches, updates and the remediation strategies essential for preventing the disruption of vital business systems. We help businesses in making their SAP systems more secure.

SecurityBridge
Platform
Product

© Copyright 2024 by SecurityBridge GmbH

v34.3