SAP Security Notes

 

Advisories for SAP_BASIS 740

Below you can find all Security Advisories that related to your search term.

Note Component Description CVSS Severity Patchday Initially released on Category Affected system type Valid for
3002517 BC-SRV-RM [CVE-2021-21473] Missing Authorization check in SAP NetWeaver AS ABAP and ABAP Platform 6.3 Medium 2021-08 2021/06/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
2884910 BC-SRV-SSF [CVE-2020-6205] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP Business Server Pages  (Smart Forms) 6.1 Medium 2020-03 2020/03/10 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
3119365 BC-DOC-TTL [CVE-2021-44231] Code Injection vulnerability in SAP ABAP Server & ABAP Platform (Translation Tools) 9.9 Hot News 2021-12 2021/12/14 Program error ABAP SAP_BASIS 701 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 786 SAP_BASIS 804
3123196 BC-INS-TC-CNT [CVE-2021-44235] Code Injection vulnerability in utility class for SAP NetWeaver AS ABAP 8.4 High 2021-12 2021/12/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
3128473 BC-MID-RFC [CVE-2022-22545] Information Disclosure vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform 4.9 Medium 2022-02 2022/02/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
3140587 WP-WSR [CVE-2022-22540] SQL Injection vulnerability in SAP NetWeaver AS ABAP (Workplace Server) 7.1 High 2022-02 2022/02/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 787
3112710 BC-CCM-MON [CVE-2021-42067] Information Disclosure vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform 4.3 Medium 2022-01 2022/01/11 Program error ABAP SAP_BASIS 701-702 SAP_BASIS 711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 786
3124994 BC-CCM-PRN-PC [CVE-2022-22534] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver 4.7 Medium 2022-02 2022/02/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
3165801 BC-ABA-LI [CVE-2022-29611] Missing Authorization check in SAP NetWeaver Application Server for ABAP and ABAP Platform 6.5 Medium 2022-05 2022/05/10 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 787-788
2938831 BC-DWB-SEM SESS: Duplicate AU3 entries in the Security Audit Log 6.0 Medium 2020-07 2020/06/23 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
3165333 BC-MID-ICF [CVE-2022-28215] URL Redirection vulnerability in SAP NetWeaver ABAP Server and ABAP Platform 4.7 Medium 2022-04 2022/04/12 Program error ABAP SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 787
3097887 BC-CTS-ORG [CVE-2021-38178] Improper Authorization in SAP NetWeaver AS ABAP and ABAP Platform 9.1 Hot News 2021-10 2021/10/12 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
2822074 BC-DWB-TOO-BOB Missing Authorization check in SAP NetWeaver (ABAP Server) 6.6 Medium 2020-02 2020/01/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2880869 BC-MID-AC [CVE-2020-6184 ]Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver and SAP S/4HANA 6.1 Medium 2020-02 2020/02/11 Program error ABAP SAP_BASIS 740 SAP_BASIS 750-754
3150454 BC-MID-RFC Information Disclosure vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform 4.9 Medium 2022-07 2022/07/12 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757
3198137 BC-MID-ICF Update 1 to Security Note 3165333 - [CVE-2022-28215] URL Redirection vulnerability in SAP NetWeaver ABAP Server and ABAP Platform 4.7 Medium 2022-09 2022/09/13 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-757 SAP_BASIS 789
2872752 BC-BSP [CVE-2020-6213]Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP(Business Server Pages Test Application SBSPEXT_PHTMLB) 6.1 Medium 2020-04 2020/04/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2872782 BC-BSP [CVE-2020-6215] URL Redirection vulnerability in SAP NetWeaver AS ABAP – Business Server Pages Test Application IT00 6.1 Medium 2020-04 2020/04/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2996479 BC-ABA-LA [CVE-2020-26835] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP 5.3 Medium 2020-12 2020/12/08 Program error ABAP SAP_BASIS 740 SAP_BASIS 750-755
2872545 BC-BSP [CVE-2020-6217] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP (Business Server Pages Test Application IT05) 6.1 Medium 2020-04 2020/04/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2912939 BC-ABA-SC [CVE-2020-6275] Server Side Request Forgery vulnerability in SAP NetWeaver AS ABAP 7.6 High 2020-06 2020/06/09 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2091403 BC-MID-ICF Directory traversal in BC-MID-ICF 6.3 Medium 2020-07 2015/08/11 Program error ABAP SAP_BASIS 640 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 760
2927373 BC-CCM-MON-OS [CVE-2020-6280] Information Disclosure in SAP NetWeaver (ABAP Server) and ABAP Platform 2.7 Low 2020-07 2020/07/14 Program error ABAP SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2944988 BC-ESI-WS-ABA-CFG [CVE-2020-6310] Information Disclosure in SAP NetWeaver (ABAP Server) and ABAP Platform 4.3 Medium 2020-08 2020/08/11 Program error ABAP SAP_BASIS 702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
2941667 BC-ABA-SC [CVE-2020-6296] Code Injection Vulnerability in SAP NetWeaver (ABAP) and ABAP Platform 8.3 High 2020-08 2020/08/11 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
2941510 BC-MID-AC [CVE-2020-6299] Information Disclosure in SAP NetWeaver (ABAP Server) and ABAP Platform 4.3 Medium 2020-08 2020/08/11 Program error ABAP SAP_BASIS 740 SAP_BASIS 750-755
2863397 BC-UPG-NA [CVE-2020-6307] Missing Authorization Check in Automated Note Search Tool (SAP_BASIS) 4.3 Medium 2020-01 2020/01/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 SAP_BASIS DEV
3000306 BC-ABA-LA [CVE-2021-21446] Denial of service (DOS) in SAP NetWeaver AS ABAP and ABAP Platform 7.5 High 2021-01 2021/01/12 Program error ABAP SAP_BASIS 740 SAP_BASIS 750-755
2878935 BC-BSP [CVE-2020-6246] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP ( Business Server Pages Test Application SBSPEXT_TABLE) 6.1 Medium 2020-06 2020/06/09 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
3028729 BC-SRV-PMI [CVE-2021-27603] Denial of Service (DoS) in SAP NetWeaver AS of ABAP 6.5 Medium 2021-04 2021/04/13 Performance ABAP SAP_BASIS 702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-752
2114798 BC-FES-ITS Unauthorized use of application functions in SAP GUI for HTML 6.3 Medium 2021-05 2021/04/27 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-730 SAP_BASIS 731 SAP_BASIS 740
2948239 BC-BSP [CVE-2020-6324] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP (BSP Test Application) 6.1 Medium 2020-09 2020/09/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
3044754 BC-MID-RFC-BG [CVE-2021-33677] Information Disclosure in SAP NetWeaver AS ABAP and ABAP Platform 6.5 Medium 2021-07 2021/07/13 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 SAP_BASIS 784 SAP_BASIS 804 SAP_BASIS DEV
3007182 BC-MID-RFC [CVE-2021-27610] Improper Authentication in SAP NetWeaver ABAP Server and ABAP Platform 9.0 Hot News 2021-07 2021/06/08 Program error ABAP KERNEL 7.21-7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.73 KERNEL 7.77 KERNEL 7.81 KERNEL 7.84 KERNEL 8.04 KRNL32NUC 7.21 KRNL32NUC 7.21EXT KRNL32NUC 7.22 KRNL32NUC 7.22EXT KRNL32UC 7.21 KRNL32UC 7.21EXT KRNL32UC 7.22 KRNL32UC 7.22EXT KRNL64NUC 7.21 KRNL64NUC 7.21EXT KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.21 KRNL64UC 7.21EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 KRNL64UC 7.73 KRNL64UC 8.04 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 SAP_BASIS 783 SAP_BASIS 804
2963137 BC-MUS-POW [CVE-2020-6371] Information disclosure in SAP NetWeaver AS ABAP via the POWL Test Feeder endpoint 4.3 Medium 2020-10 2020/10/13 Program error ABAP SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
3080710 BC-CST-IC [CVE-2021-38181] Denial of service (DOS) in SAP NetWeaver AS ABAP and ABAP Platform 6.5 Medium 2021-10 2021/10/12 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
3089438 BC-DWB-SEM Missing transaction start (AU3) entries in the Security Audit Log 9.1 Hot News 2021-10 2021/09/20 Program error ABAP SAP_BASIS 700 - 702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750 - 756
3087254 BC-MID-ICF-LGN [CVE-2021-40496] Improper Access Control in SAP NetWeaver AS ABAP and ABAP Platform 4.3 Medium 2021-10 2021/10/12 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 785 SAP_BASIS 804
3099011 BC-ABA-LA [CVE-2021-40495] Denial of Service (DOS) in SAP NetWeaver Application Server for ABAP and ABAP Platform 5.3 Medium 2021-10 2021/10/12 Program error ABAP SAP_BASIS 740 SAP_BASIS 750-755
3105728 BC-DWB-TOO [CVE-2021-40504] Leverage of Permission in SAP NetWeaver Application Server for ABAP and ABAP Platform 4.9 Medium 2021-11 2021/11/09 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
ABEX logo

SecurityBridge helps in prioritizing SAP patches, updates and the remediation strategies essential for preventing the disruption of vital business systems. We help businesses in making their SAP systems more secure.

SecurityBridge

© Copyright 2022 by SecurityBridge // NCMI GmbH