SAP Security Notes

 

Advisories for SAP_BASIS 740

Below you can find all Security Advisories that related to your search term.

Note Component Description CVSS Severity Patchday Initially released on Category Affected system type Valid for
2884910 BC-SRV-SSF [CVE-2020-6205] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP Business Server Pages  (Smart Forms) 6.1 Medium 2020-03 2020/03/10 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2880744 BC-SEC-LGN-SML [CVE-2020-6181] HTTP Response Splitting vulnerability in SAP NetWeaver and ABAP Platform 5.8 Medium 2020-02 2020/02/11 Program error ABAP SAP_BASIS 702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2822074 BC-DWB-TOO-BOB Missing Authorization check in SAP NetWeaver (ABAP Server) 6.6 Medium 2020-02 2020/01/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2880869 BC-MID-AC [CVE-2020-6184 ]Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver and SAP S/4HANA 6.1 Medium 2020-02 2020/02/11 Program error ABAP SAP_BASIS 740 SAP_BASIS 750-754
2872752 BC-BSP [CVE-2020-6213]Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP(Business Server Pages Test Application SBSPEXT_PHTMLB) 6.1 Medium 2020-04 2020/04/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2872782 BC-BSP [CVE-2020-6215] URL Redirection vulnerability in SAP NetWeaver AS ABAP – Business Server Pages Test Application IT00 6.1 Medium 2020-04 2020/04/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2996479 BC-ABA-LA [CVE-2020-26835] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP 5.3 Medium 2020-12 2020/12/08 Program error ABAP SAP_BASIS 740 SAP_BASIS 750-755
2872545 BC-BSP [CVE-2020-6217] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP (Business Server Pages Test Application IT05) 6.1 Medium 2020-04 2020/04/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2912939 BC-ABA-SC [CVE-2020-6275] Server Side Request Forgery vulnerability in SAP NetWeaver AS ABAP 7.6 High 2020-06 2020/06/09 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2091403 BC-MID-ICF Directory traversal in BC-MID-ICF 6.3 Medium 2020-07 2015/08/11 Program error ABAP SAP_BASIS 640 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 760
2927373 BC-CCM-MON-OS [CVE-2020-6280] Information Disclosure in SAP NetWeaver (ABAP Server) and ABAP Platform 2.7 Low 2020-07 2020/07/14 Program error ABAP SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
2944988 BC-ESI-WS-ABA-CFG [CVE-2020-6310] Information Disclosure in SAP NetWeaver (ABAP Server) and ABAP Platform 4.3 Medium 2020-08 2020/08/11 Program error ABAP SAP_BASIS 702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
2941667 BC-ABA-SC [CVE-2020-6296] Code Injection Vulnerability in SAP NetWeaver (ABAP) and ABAP Platform 8.3 High 2020-08 2020/08/11 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
2941510 BC-MID-AC [CVE-2020-6299] Information Disclosure in SAP NetWeaver (ABAP Server) and ABAP Platform 4.3 Medium 2020-08 2020/08/11 Program error ABAP SAP_BASIS 740 SAP_BASIS 750-755
2863397 BC-UPG-NA [CVE-2020-6307] Missing Authorization Check in Automated Note Search Tool (SAP_BASIS) 4.3 Medium 2020-01 2020/01/14 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754 SAP_BASIS DEV
3000306 BC-ABA-LA [CVE-2021-21446] Denial of service (DOS) in SAP NetWeaver AS ABAP and ABAP Platform 7.5 High 2021-01 2021/01/12 Program error ABAP SAP_BASIS 740 SAP_BASIS 750-755
2878935 BC-BSP [CVE-2020-6246] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP ( Business Server Pages Test Application SBSPEXT_TABLE) 6.1 Medium 2020-06 2020/06/09 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-754
3028729 BC-SRV-PMI [CVE-2021-27603] Denial of Service (DoS) in SAP NetWeaver AS of ABAP 6.5 Medium 2021-04 2021/04/13 Performance ABAP SAP_BASIS 702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-752
2114798 BC-FES-ITS Unauthorized use of application functions in SAP GUI for HTML 6.3 Medium 2021-05 2021/04/27 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-730 SAP_BASIS 731 SAP_BASIS 740
2948239 BC-BSP [CVE-2020-6324] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP (BSP Test Application) 6.1 Medium 2020-09 2020/09/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
3044754 BC-MID-RFC-BG [CVE-2021-33677] Information Disclosure in SAP NetWeaver AS ABAP and ABAP Platform 6.5 Medium 2021-07 2021/07/13 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 SAP_BASIS 784 SAP_BASIS 804 SAP_BASIS DEV
3007182 BC-MID-RFC [CVE-2021-27610] Improper Authentication in SAP NetWeaver ABAP Server and ABAP Platform 9.0 Hot News 2021-07 2021/06/08 Program error ABAP KERNEL 7.21-7.22 KERNEL 7.49 KERNEL 7.53 KERNEL 7.73 KERNEL 7.77 KERNEL 7.81 KERNEL 7.84 KERNEL 8.04 KRNL32NUC 7.21 KRNL32NUC 7.21EXT KRNL32NUC 7.22 KRNL32NUC 7.22EXT KRNL32UC 7.21 KRNL32UC 7.21EXT KRNL32UC 7.22 KRNL32UC 7.22EXT KRNL64NUC 7.21 KRNL64NUC 7.21EXT KRNL64NUC 7.22 KRNL64NUC 7.22EXT KRNL64NUC 7.49 KRNL64UC 7.21 KRNL64UC 7.21EXT KRNL64UC 7.22 KRNL64UC 7.22EXT KRNL64UC 7.49 KRNL64UC 7.53 KRNL64UC 7.73 KRNL64UC 8.04 SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755 SAP_BASIS 783 SAP_BASIS 804
2963137 BC-MUS-POW [CVE-2020-6371] Information disclosure in SAP NetWeaver AS ABAP via the POWL Test Feeder endpoint 4.3 Medium 2020-10 2020/10/13 Program error ABAP SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
3002517 BC-SRV-RM [CVE-2021-21473] Missing Authorization check in SAP NetWeaver AS ABAP and ABAP Platform 6.3 Medium 2021-08 2021/06/08 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-755
2938831 BC-DWB-SEM SESS: Duplicate AU3 entries in the Security Audit Log 6.0 Medium 2020-07 2020/06/23 Program error ABAP SAP_BASIS 700 - 702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750 - 754
3097887 BC-CTS-ORG [CVE-2021-38178] Improper Authorization in SAP NetWeaver AS ABAP and ABAP Platform 9.1 Hot News 2021-10 2021/10/12 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
3089438 BC-DWB-SEM Missing transaction start (AU3) entries in the Security Audit Log 9.1 Hot News 2021-10 2021/09/20 Program error ABAP SAP_BASIS 700 - 702 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750 - 756
3087254 BC-MID-ICF-LGN [CVE-2021-40496] Improper Access Control in SAP NetWeaver AS ABAP and ABAP Platform 4.3 Medium 2021-10 2021/10/12 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756 SAP_BASIS 785 SAP_BASIS 804
3080710 BC-CST-IC [CVE-2021-38181] Denial of service (DOS) in SAP NetWeaver AS ABAP and ABAP Platform 6.5 Medium 2021-10 2021/10/12 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
3099011 BC-ABA-LA [CVE-2021-40495] Denial of Service (DOS) in SAP NetWeaver Application Server for ABAP and ABAP Platform 5.3 Medium 2021-10 2021/10/12 Program error ABAP SAP_BASIS 740 SAP_BASIS 750-755
3105728 BC-DWB-TOO [CVE-2021-40504] Leverage of Permission in SAP NetWeaver Application Server for ABAP and ABAP Platform 4.9 Medium 2021-11 2021/11/09 Program error ABAP SAP_BASIS 700-702 SAP_BASIS 710-711 SAP_BASIS 730 SAP_BASIS 731 SAP_BASIS 740 SAP_BASIS 750-756
ABEX logo

SecurityBridge helps in prioritizing SAP patches, updates and the remediation
strategies essential for preventing the disruption of vital business systems.
We help businesses in making their SAP systems more secure.

Company

© Copyright 2021 by SecurityBridge // NCMI GmbH