CVE-2021-38150
- EPSS 0.13%
- Veröffentlicht 14.09.2021 12:15:10
- Zuletzt bearbeitet 27.05.2025 16:49:57
When an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will allow him to read extremely sensitive data, such as credentials. Th...
CVE-2020-6244
- EPSS 0.07%
- Veröffentlicht 12.05.2020 18:15:13
- Zuletzt bearbeitet 27.05.2025 16:50:33
SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories that can be executed by the application, due to uncontrolled search path element. An att...
CVE-2020-6228
- EPSS 0.13%
- Veröffentlicht 14.04.2020 19:15:17
- Zuletzt bearbeitet 27.05.2025 16:51:05
SAP Business Client, versions 6.5, 7.0, does not perform necessary integrity checks which could be exploited by an attacker under certain conditions to modify the installer.
CVE-2018-2398
- EPSS 0.16%
- Veröffentlicht 14.03.2018 19:29:00
- Zuletzt bearbeitet 27.05.2025 16:51:26
Under certain conditions SAP Business Client 6.5 allows an attacker to access information which would otherwise be restricted.