SAP Security Advisory version SERVERCORE 7.50 - SAP Security Notes

 

Advisories for SERVERCORE 7.50

Below you can find all Security Advisories that related to your search term.

Note Component Description CVSS Severity Patchday Initially released on Category Affected system type Valid for
3289994 EP-PIN-PRT [CVE-2023-28761] Missing Authentication check in SAP NetWeaver Enterprise Portal 6.5 Medium 2023-04 2023/04/11 Program error Java SERVERCORE 7.50
2847787 BC-JAS-SEC-UME [CVE-2020-6202] Missing XML Validation in SAP NetWeaver Application Server Java (User Management Engine) 5.5 Medium 2020-03 2020/03/10 Program error Java SERVERCORE 7.10 SERVERCORE 7.11 SERVERCORE 7.20 SERVERCORE 7.30 SERVERCORE 7.31 SERVERCORE 7.40 SERVERCORE 7.50
3147498 BC-JAS-ADM-ADM Improper Access Control check in SAP NetWeaver basicadmin and adminadapter services 8.2 High 2022-06 2022/06/14 Program error Java ENGINEAPI 7.30 ENGINEAPI 7.31 ENGINEAPI 7.40 ENGINEAPI 7.50 SERVERCORE 7.30 SERVERCORE 7.31 SERVERCORE 7.40 SERVERCORE 7.50
3287784 BC-JAS-DPL [CVE-2023-24527] Improper Access Control in SAP NetWeaver AS Java for Deploy Service 5.3 Medium 2023-04 2023/04/11 Program error Java ENGINEAPI 7.50 SERVERCORE 7.50
3262544 BC-JAS-WEB [CVE-2022-41262] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS for Java (Http Provider Service) 6.1 Medium 2022-12 2022/12/13 Program error Java SERVERCORE 7.50
3317453 BC-JAS-EJB [CVE-2023-30744] Improper access control during application start-up in SAP AS NetWeaver JAVA 8.2 High 2023-05 2023/05/09 Program error Java CORE-TOOLS 7.50 J2EE-FRMW 7.50 SERVERCORE 7.50
2826528 BC-JAS-WEB [CVE-2020-6224] Information Disclosure in SAP NetWeaver Application Server Java (HTTP Service) 6.2 Medium 2020-04 2020/04/14 Program error Java SERVERCORE 7.10 SERVERCORE 7.11 SERVERCORE 7.20 SERVERCORE 7.30 SERVERCORE 7.31 SERVERCORE 7.40 SERVERCORE 7.50
3288480 BC-JAS-COR-SES [CVE-2023-27268] Improper Access Control in SAP NetWeaver AS Java (Object Analyzing Service) 5.3 Medium 2023-03 2023/03/14 Program error Java SERVERCORE 7.50
3288096 BC-JAS-COR-CSH [CVE-2023-26460] Improper Access Control in SAP NetWeaver AS Java (Cache Management Service) 5.3 Medium 2023-03 2023/03/14 Program error Java SERVERCORE 7.50
2878568 BC-JAS-COR-RMT [CVE-2020-6263] Authentication Bypass in Standalone Clients connecting to SAP NetWeaver AS Java via P4 Protocol 6.9 Medium 2020-06 2020/06/09 Program error Java SAP-JEECOR 7.00 SAP-JEECOR 7.01-7.02 SERVERCORE 7.10 SERVERCORE 7.11 SERVERCORE 7.20 SERVERCORE 7.30 SERVERCORE 7.31 SERVERCORE 7.40 SERVERCORE 7.50 CORE-TOOLS 7.00-7.02 CORE-TOOLS 7.10-7.11 CORE-TOOLS 7.20 CORE-TOOLS 7.30 CORE-TOOLS 7.31 CORE-TOOLS 7.40 CORE-TOOLS 7.50
3252433 BC-CST-EQ [CVE-2023-23857] Improper Access Control in SAP NetWeaver AS for Java 9.9 Hot News 2023-03 2023/03/14 Program error Java SERVERCORE 7.50
3288394 BC-JAS-COR [CVE-2023-24526] Improper Access Control in SAP NetWeaver AS Java (Classload Service) 5.3 Medium 2023-03 2023/03/14 Program error Java SERVERCORE 7.50
2974774 BC-JAS-COR-CLS [CVE-2020-26829] Missing Authentication Check in SAP NetWeaver AS JAVA (P2P Cluster Communication) 10.0 Hot News 2020-12 2020/12/08 Program error Java SERVERCORE 7.10 SERVERCORE 7.11 SERVERCORE 7.20 SERVERCORE 7.30 SERVERCORE 7.31 SERVERCORE 7.40 SERVERCORE 7.50
3324732 BC-JAS-SEC [CVE-2023-31405] Log Injection vulnerability in SAP NetWeaver AS for Java (Log Viewer) 5.3 Medium 2023-07 2023/07/11 Program error Java ENGINEAPI 7.50 J2EE-APPS 7.50 SERVERCORE 7.50
2956398 BC-JAS-WEB [CVE-2020-6319] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS Java 6.1 Medium 2020-10 2020/10/13 Program error Java SERVERCORE 7.10 SERVERCORE 7.11 SERVERCORE 7.20 SERVERCORE 7.30 SERVERCORE 7.31 SERVERCORE 7.40 SERVERCORE 7.50
3434839 BC-JAS-SEC-UME [CVE-2024-27899] Security misconfiguration vulnerability in SAP NetWeaver AS Java User Management Engine 8.8 High 2024-04 2024/04/09 Program error Java J2EE-APPS 7.50 SERVERCORE 7.50 UMEADMIN 7.50
2971163 BC-JAS-SEC [CVE-2020-26816] Missing Encryption in SAP NetWeaver AS Java (Key Storage Service) 5.4 Medium 2020-12 2020/12/08 Program error Java SERVERCORE 7.10 SERVERCORE 7.11 SERVERCORE 7.20 SERVERCORE 7.30 SERVERCORE 7.31 SERVERCORE 7.40 SERVERCORE 7.50
3366410 BC-JAS-SEC [CVE-2023-42480] Information Disclosure in NetWeaver AS Java Logon 5.3 Medium 2023-11 2023/11/14 Program error Java SERVERCORE 7.50
3025637 BC-JAS-WEB [CVE-2021-21492] Content spoofing in NetWeaver AS Java HTTP Service 4.3 Medium 2021-04 2021/04/13 Program error Java SERVERCORE 7.10 SERVERCORE 7.11 SERVERCORE 7.20 SERVERCORE 7.30 SERVERCORE 7.31 SERVERCORE 7.40 SERVERCORE 7.50
3001824 BC-JAS-COR [CVE-2021-21485] Information Disclosure in SAP NetWeaver AS for Java (Telnet Commands) 7.4 High 2021-04 2021/04/13 Program error Java ENGINEAPI 7.30 ENGINEAPI 7.31 ENGINEAPI 7.40 ENGINEAPI 7.50 ESP_FRAMEWORK 7.10-7.11 ESP_FRAMEWORK 7.20 ESP_FRAMEWORK 7.30 ESP_FRAMEWORK 7.31 ESP_FRAMEWORK 7.40 ESP_FRAMEWORK 7.50 J2EE-FRMW 7.10-7.11 J2EE-FRMW 7.20 J2EE-FRMW 7.30 J2EE-FRMW 7.31 J2EE-FRMW 7.40 J2EE-FRMW 7.50 SERVERCORE 7.10 SERVERCORE 7.11 SERVERCORE 7.20 SERVERCORE 7.30 SERVERCORE 7.31 SERVERCORE 7.40 SERVERCORE 7.50
2896025 BC-JAS-COR-RMT [CVE-2020-6282] Server-Side Request Forgery in SAP NetWeaver AS JAVA (IIOP service) 5.8 Medium 2020-07 2020/07/14 Modification Java CORE-TOOLS 7.10-7.11 CORE-TOOLS 7.20 CORE-TOOLS 7.30 CORE-TOOLS 7.31 CORE-TOOLS 7.40 CORE-TOOLS 7.50 SERVERCORE 7.10 SERVERCORE 7.11 SERVERCORE 7.20 SERVERCORE 7.30 SERVERCORE 7.31 SERVERCORE 7.40 SERVERCORE 7.50
3056652 BC-JAS-WEB [CVE-2021-33670] Denial of Service (DoS) in SAP NetWeaver AS for Java (Http Service) 7.5 High 2021-07 2021/07/13 Program error Java SERVERCORE 7.10 SERVERCORE 7.11 SERVERCORE 7.20 SERVERCORE 7.30 SERVERCORE 7.31 SERVERCORE 7.40 SERVERCORE 7.50
ABEX logo

SecurityBridge helps in prioritizing SAP patches, updates and the remediation strategies essential for preventing the disruption of vital business systems. We help businesses in making their SAP systems more secure.

SecurityBridge

© Copyright 2024 by SecurityBridge GmbH

v34.3