CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Sap: >> Sapscore >> 1.12 Security Vulnerabilities

CVE-2019-0244

SAP CRM WebClient UI (fixed in SAPSCORE 1.12; S4FND 1.02; WEBCUIF 7.31, 7.46, 7.47, 7.48, 8.0, 8.01) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.

CVSS Score

5.4

EPSS Score

0.003

Published

2019-01-08

CVE-2019-0245

SAP CRM WebClient UI (fixed in SAPSCORE 1.12; S4FND 1.02; WEBCUIF 7.31, 7.46, 7.47, 7.48, 8.0, 8.01) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.

CVSS Score

5.4

EPSS Score

0.003

Published

2019-01-08

CVE-2018-2419

SAP Enterprise Financial Services (SAPSCORE 1.11, 1.12; S4CORE 1.01, 1.02; EA-FINSERV 6.04, 6.05, 6.06, 6.16, 6.17, 6.18, 8.0) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.

CVSS Score

3.7

EPSS Score

0.002

Published

2018-05-09

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved