SAP Security Notes

 

Advisories for SAP_BASIS 700-702

Below you can find all Security Advisories that related to your search term.

Note Component Description CVSS Severity Patchday Initially released on Category Affected system type Valid for
3002517 BC-SRV-RM [CVE-2021-21473] Missing Authorization check in SAP NetWeaver AS ABAP and ABAP Platform 6.3 Medium 2021-08 2021/06/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
2884910 BC-SRV-SSF [CVE-2020-6205] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP Business Server Pages  (Smart Forms) 6.1 Medium 2020-03 2020/03/10 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
3123196 BC-INS-TC-CNT [CVE-2021-44235] Code Injection vulnerability in utility class for SAP NetWeaver AS ABAP 8.4 High 2021-12 2021/12/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
3128473 BC-MID-RFC [CVE-2022-22545] Information Disclosure vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform 4.9 Medium 2022-02 2022/02/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
3140587 WP-WSR [CVE-2022-22540] SQL Injection vulnerability in SAP NetWeaver AS ABAP (Workplace Server) 7.1 High 2022-02 2022/02/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 787
3124994 BC-CCM-PRN-PC [CVE-2022-22534] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver 4.7 Medium 2022-02 2022/02/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
3165801 BC-ABA-LI [CVE-2022-29611] Missing Authorization check in SAP NetWeaver Application Server for ABAP and ABAP Platform 6.5 Medium 2022-05 2022/05/10 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 787-788
2938831 BC-DWB-SEM SESS: Duplicate AU3 entries in the Security Audit Log 6.0 Medium 2020-07 2020/06/23 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
3145997 BC-ABA-SC [CVE-2022-26102] Missing authorization check in SAP NetWeaver Application Server for ABAP 5.4 Medium 2022-03 2022/03/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731
3097887 BC-CTS-ORG [CVE-2021-38178] Improper Authorization in SAP NetWeaver AS ABAP and ABAP Platform 9.1 Hot News 2021-10 2021/10/12 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
2822074 BC-DWB-TOO-BOB Missing Authorization check in SAP NetWeaver (ABAP Server) 6.6 Medium 2020-02 2020/01/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
3150454 BC-MID-RFC Information Disclosure vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform 4.9 Medium 2022-07 2022/07/12 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757
3198137 BC-MID-ICF Update 1 to Security Note 3165333 - [CVE-2022-28215] URL Redirection vulnerability in SAP NetWeaver ABAP Server and ABAP Platform 4.7 Medium 2022-09 2022/09/13 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 SAP_BASIS 789
2872752 BC-BSP [CVE-2020-6213]Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP(Business Server Pages Test Application SBSPEXT_PHTMLB) 6.1 Medium 2020-04 2020/04/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2872782 BC-BSP [CVE-2020-6215] URL Redirection vulnerability in SAP NetWeaver AS ABAP – Business Server Pages Test Application IT00 6.1 Medium 2020-04 2020/04/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2872545 BC-BSP [CVE-2020-6217] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP (Business Server Pages Test Application IT05) 6.1 Medium 2020-04 2020/04/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2912939 BC-ABA-SC [CVE-2020-6275] Server Side Request Forgery vulnerability in SAP NetWeaver AS ABAP 7.6 High 2020-06 2020/06/09 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2091403 BC-MID-ICF Directory traversal in BC-MID-ICF 6.3 Medium 2020-07 2015/08/11 Program error ABAP SAP_BASIS 640 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 760
2941667 BC-ABA-SC [CVE-2020-6296] Code Injection Vulnerability in SAP NetWeaver (ABAP) and ABAP Platform 8.3 High 2020-08 2020/08/11 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
2747062 BC-WD-ABA This note has been re-released without changes. - Cross-Site Request Forgery (CSRF) vulnerability in SAP Web Dynpro ABAP 5.0 Medium 2020-05 2020/05/12 Program error ABAP SAP_UI 750 SAP_UI 751 SAP_UI 752 SAP_UI 753 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 804 SAP_BASIS 776
2863397 BC-UPG-NA [CVE-2020-6307] Missing Authorization Check in Automated Note Search Tool (SAP_BASIS) 4.3 Medium 2020-01 2020/01/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 SAP_BASIS DEV
2974582 BC-WD-ABA [CVE-2021-21478] Reverse Tabnabbing vulnerability in SAP NetWeaver Application Server ABAP (Applications based on Web Dynpro ABAP) 4.7 Medium 2021-02 2021/02/09 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 804 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755
2878935 BC-BSP [CVE-2020-6246] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP ( Business Server Pages Test Application SBSPEXT_TABLE) 6.1 Medium 2020-06 2020/06/09 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2142551 BC-WD-ABA Whitelist service for Clickjacking Framing Protection in AS ABAP 4.3 Medium 2020-01 2016/07/12 Program error ABAP SAP_UI 740 SAP_UI 750 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731
2114798 BC-FES-ITS Unauthorized use of application functions in SAP GUI for HTML 6.3 Medium 2021-05 2021/04/27 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-730 SAP_BASIS 731 SAP_BASIS 740
3046610 BC-CTS-ORG [CVE-2021-27611] Code Injection vulnerability in SAP NetWeaver AS ABAP 8.2 High 2021-05 2021/05/11 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731
2948239 BC-BSP [CVE-2020-6324] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP (BSP Test Application) 6.1 Medium 2020-09 2020/09/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
3044754 BC-MID-RFC-BG [CVE-2021-33677] Information Disclosure in SAP NetWeaver AS ABAP and ABAP Platform 6.5 Medium 2021-07 2021/07/13 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 SAP_BASIS 784 SAP_BASIS 804 SAP_BASIS DEV
3007182 BC-MID-RFC [CVE-2021-27610] Improper Authentication in SAP NetWeaver ABAP Server and ABAP Platform 9.0 Hot News 2021-07 2021/06/08 Program error ABAP KERNEL 7.21-7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.73 KERNEL 7.77 KERNEL 7.81 KERNEL 7.84 KERNEL 8.04 KRNL32NUC 7.21 KRNL32NUC 7.21EXT KRNL32NUC 7.22 KRNL32NUC 7.22EXT KRNL32UC 7.21 KRNL32UC 7.21EXT KRNL32UC 7.22 KRNL32UC 7.22EXT KRNL64NUC 7.21 KRNL64NUC 7.21EXT KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.21 KRNL64UC 7.21EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 KRNL64UC 7.73 KRNL64UC 8.04 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 SAP_BASIS 783 SAP_BASIS 804
3080710 BC-CST-IC [CVE-2021-38181] Denial of service (DOS) in SAP NetWeaver AS ABAP and ABAP Platform 6.5 Medium 2021-10 2021/10/12 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
3087254 BC-MID-ICF-LGN [CVE-2021-40496] Improper Access Control in SAP NetWeaver AS ABAP and ABAP Platform 4.3 Medium 2021-10 2021/10/12 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 785 SAP_BASIS 804
3084937 BC-CTS-TMS [CVE-2021-38183] Cross-Site Scripting (XSS) vulnerability in cms Service of SAP NetWeaver 5.4 Medium 2021-10 2021/10/12 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730
3105728 BC-DWB-TOO [CVE-2021-40504] Leverage of Permission in SAP NetWeaver Application Server for ABAP and ABAP Platform 4.9 Medium 2021-11 2021/11/09 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
ABEX logo

SecurityBridge helps in prioritizing SAP patches, updates and the remediation strategies essential for preventing the disruption of vital business systems. We help businesses in making their SAP systems more secure.

SecurityBridge

© Copyright 2022 by SecurityBridge // NCMI GmbH