Shodan
Vulnerabilities
Vulnerable Software
Sap:  Security Vulnerabilities
CVE-2014-2748
The Security Audit Log facility in SAP Enhancement Package (EHP) 6 for SAP ERP 6.0 allows remote attackers to modify or delete arbitrary log classes via unspecified vectors. NOTE: some of these details are obtained from third party information.
CVSS Score
7.5
EPSS Score
0.007
Published
2014-04-10
CVE-2014-2749
The HANA ICM process in SAP HANA allows remote attackers to obtain the platform version, host name, instance number, and possibly other sensitive information via a malformed HTTP GET request.
CVSS Score
5.0
EPSS Score
0.005
Published
2014-04-10
CVE-2013-7355
SQL injection vulnerability in SAP BI Universal Data Integration allows remote attackers to execute arbitrary SQL commands via unspecified vectors, related to the J2EE schema.
CVSS Score
7.5
EPSS Score
0.003
Published
2014-04-10
CVE-2013-7356
Unspecified vulnerability in the SAP CCMS / Database Monitors for Oracle allows attackers to obtain the database password via unknown vectors.
CVSS Score
5.0
EPSS Score
0.003
Published
2014-04-10
CVE-2013-7357
Unspecified vulnerability in the configuration service in SAP J2EE Engine allows remote attackers to obtain credential information via unknown vectors.
CVSS Score
5.0
EPSS Score
0.003
Published
2014-04-10
CVE-2013-7358
Unspecified vulnerability in SAP Guided Procedures Archive Monitor allows remote attackers to obtain usernames, roles, profiles, and possibly other identity information via unknown vectors.
CVSS Score
5.0
EPSS Score
0.003
Published
2014-04-10
CVE-2013-7359
Unspecified vulnerability in SAP Mobile Infrastructure allows remote attackers to obtain sensitive port information via unknown vectors, related to an "internal port scanning" issue.
CVSS Score
5.0
EPSS Score
0.003
Published
2014-04-10
CVE-2013-7360
Unspecified vulnerability in SAP adminadapter allows remote attackers to read or write to arbitrary files via unknown vectors.
CVSS Score
7.5
EPSS Score
0.005
Published
2014-04-10
CVE-2013-7361
Directory traversal vulnerability in SAP CMS and CM Services allows attackers to upload arbitrary files via unspecified vectors.
CVSS Score
5.0
EPSS Score
0.003
Published
2014-04-10
CVE-2014-1960
The Solution Manager in SAP NetWeaver does not properly restrict access, which allows remote attackers to obtain sensitive information via unspecified vectors.
CVSS Score
5.0
EPSS Score
0.004
Published
2014-02-14


Products
Pricing
Contact Us

Shodan ® - All rights reserved