Page(s) : 1 ... 101 102 103 104 105 106 107 108 109 110 [111] 112 113 114 115 116 117 118 119 120 121 ... | Result(s) : 114980 |
Alerts
DATE | NAME | CATEGORIES | DETAIL | |
---|---|---|---|---|
6.5 | 2025-03-11 | CVE-2024-22340 | cve | IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow a remote attacker to obtain sensitive information during the creation of ECDSA signatures to perform a... |
6.5 | 2025-03-11 | CVE-2024-49823 | cve | IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an authenticated user to cause a denial of service in the Hardware Security Module (HSM) using a specially... |
4.7 | 2025-03-11 | CVE-2025-0062 | cve | SAP BusinessObjects Business Intelligence Platform allows an attacker to inject JavaScript code in Web Intelligence reports. This code is then executed in the victim's brow... |
4.9 | 2025-03-11 | CVE-2025-0071 | cve | SAP Web Dispatcher and Internet Communication Manager allow an attacker with administrative privileges to enable debugging trace mode with a specific parameter value. This expos... |
4.1 | 2025-03-11 | CVE-2025-23185 | cve | Due to improper error handling in SAP Business Objects Business Intelligence Platform, technical details of the application are revealed in exceptions thrown to the user and in ... |
4.3 | 2025-03-11 | CVE-2025-23188 | cve | An authenticated user with low privileges can exploit a missing authorization check in an IBS module of FS-RBD, allowing unauthorized access to perform actions beyond their inte... |
5.3 | 2025-03-11 | CVE-2025-23194 | cve | SAP NetWeaver Enterprise Portal OBN does not perform proper authentication check for a particular configuration setting. As result, a non-authenticated user can set it to an und... |
6.1 | 2025-03-11 | CVE-2025-25242 | cve | SAP NetWeaver Application Server ABAP allows malicious scripts to be executed in the application, potentially leading to a Cross-Site Scripting (XSS) vulnerability. This has no ... |
5.7 | 2025-03-11 | CVE-2025-25244 | cve | SAP Business Warehouse (Process Chains) allows an attacker to manipulate the process execution due to missing authorization check. An attacker with display authorization for the... |
5.4 | 2025-03-11 | CVE-2025-25245 | cve | SAP BusinessObjects Business Intelligence Platform (Web Intelligence) contains a deprecated web application endpoint that is not properly secured. An attacker could take advanta... |
4.3 | 2025-03-11 | CVE-2025-26656 | cve | OData Service in Manage Purchasing Info Records does not perform necessary authorization checks for an authenticated user, allowing an attacker to escalate privileges. This has ... |
6.8 | 2025-03-11 | CVE-2025-26658 | cve | The Service Layer in SAP Business One, allows attackers to potentially gain unauthorized access and impersonate other users in the application to perform unauthorized actions. D... |
6.1 | 2025-03-11 | CVE-2025-26659 | cve | SAP NetWeaver Application Server ABAP does not sufficiently encode user-controlled inputs, leading to DOM-basedCross-Site Scripting (XSS) vulnerability. This allows an attacker ... |
4.3 | 2025-03-11 | CVE-2025-26660 | cve | SAP Fiori applications using the posting library fail to properly configure security settings during the setup process, leaving them at default or inadequately defined. This vul... |
5.4 | 2025-03-11 | CVE-2025-27431 | cve | User management functionality in SAP NetWeaver Application Server Java is vulnerable to Stored Cross-Site Scripting (XSS). This could enable an attacker to inject malicious payl... |
4.3 | 2025-03-11 | CVE-2025-27433 | cve | The Manage Bank Statements in SAP S/4HANA allows authenticated attacker to bypass certain functionality restrictions of the application and upload files to a reversed bank state... |
4.3 | 2025-03-11 | CVE-2025-27436 | cve | The Manage Bank Statements in SAP S/4HANA does not perform required access control checks for an authenticated user to confirm whether a request to interact with a resource is l... |
6.1 | 2025-03-11 | CVE-2024-13436 | cve | The Appsero Helper plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.2. This is due to missing or incorrect nonce valida... |
5.3 | 2025-03-10 | CVE-2024-47109 | cve | IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.3 UI could disclosure the installation path of the server which could aid in further attacks against ... |
5.5 | 2025-03-10 | CVE-2024-44192 | cve | The issue was addressed with improved checks. This issue is fixed in watchOS 11, macOS Sequoia 15, Safari 18, visionOS 2, iOS 18 and iPadOS 18, tvOS 18. Processing maliciously c... |
Page(s) : 1 ... 101 102 103 104 105 106 107 108 109 110 [111] 112 113 114 115 116 117 118 119 120 121 ... | Result(s) : 114980 |