CVE-2024-47586
- EPSS 0.6%
- Published 12.11.2024 01:15:04
- Last modified 12.11.2024 13:55:21
SAP NetWeaver Application Server for ABAP and ABAP Platform allows an unauthenticated attacker to send a maliciously crafted http request which could cause a null pointer dereference in the kernel. This dereference will result in the system crashing ...
- EPSS 0.48%
- Published 02.06.2015 14:59:18
- Last modified 12.04.2025 10:46:40
SAP ABAP & Java Server allows remote attackers to cause a denial of service (service termination) via unspecified vectors, aka SAP Security Note 2121661.
CVE-2015-2282
- EPSS 0.92%
- Published 02.06.2015 14:59:08
- Last modified 12.04.2025 10:46:40
Stack-based buffer overflow in the LZC decompression implementation (CsObjectInt::CsDecomprLZC function in vpa106cslzc.cpp) in SAP MaxDB 7.5 and 7.6, Netweaver Application Server ABAP, Netweaver Application Server Java, Netweaver RFC SDK, GUI, RFC SD...
- EPSS 0.72%
- Published 02.06.2015 14:59:07
- Last modified 12.04.2025 10:46:40
The LZH decompression implementation (CsObjectInt::BuildHufTree function in vpa108csulzh.cpp) in SAP MaxDB 7.5 and 7.6, Netweaver Application Server ABAP, Netweaver Application Server Java, Netweaver RFC SDK, GUI, RFC SDK, SAPCAR archive tool, and ot...
CVE-2014-3130
- EPSS 0.07%
- Published 30.04.2014 14:22:07
- Last modified 12.04.2025 10:46:40
The ABAP Help documentation and translation tools (BC-DOC-HLP) in Basis in SAP Netweaver ABAP Application Server does not properly restrict access, which allows local users to gain privileges and execute ABAP instructions via crafted help messages.