| Page(s) : 1 ... 130 131 132 133 134 135 136 137 138 139 [140] 141 142 143 144 145 146 147 148 149 150 ... | Result(s) : 312940 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.1 | 2025-03-11 | CVE-2025-27494 | cve | A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V6.4.9), SiPass integrated ACC-AP (All versions < V6.4.9). Affected devices improperly s... |
| N/A | 2025-03-11 | CVE-2025-1828 | cve | Crypt::Random Perl package 1.05 through 1.55 may use rand() function, which is not cryptographically strong, for cryptographic functions. If the Provider is not specified and /... |
| 6.5 | 2025-03-11 | CVE-2024-22340 | cve | IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow a remote attacker to obtain sensitive information during the creation of ECDSA signatures to perform a... |
| 3.7 | 2025-03-11 | CVE-2024-41760 | cve | IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an attacker to obtain sensitive information due to a timing attack during certain RSA operations. |
| 6.5 | 2025-03-11 | CVE-2024-49823 | cve | IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an authenticated user to cause a denial of service in the Hardware Security Module (HSM) using a specially... |
| 4.7 | 2025-03-11 | CVE-2025-0062 | cve | SAP BusinessObjects Business Intelligence Platform allows an attacker to inject JavaScript code in Web Intelligence reports. This code is then executed in the victim's brow... |
| 4.9 | 2025-03-11 | CVE-2025-0071 | cve | SAP Web Dispatcher and Internet Communication Manager allow an attacker with administrative privileges to enable debugging trace mode with a specific parameter value. This expos... |
| 4.1 | 2025-03-11 | CVE-2025-23185 | cve | Due to improper error handling in SAP Business Objects Business Intelligence Platform, technical details of the application are revealed in exceptions thrown to the user and in ... |
| 4.3 | 2025-03-11 | CVE-2025-23188 | cve | An authenticated user with low privileges can exploit a missing authorization check in an IBS module of FS-RBD, allowing unauthorized access to perform actions beyond their inte... |
| 5.3 | 2025-03-11 | CVE-2025-23194 | cve | SAP NetWeaver Enterprise Portal OBN does not perform proper authentication check for a particular configuration setting. As result, a non-authenticated user can set it to an und... |
| 6.1 | 2025-03-11 | CVE-2025-25242 | cve | SAP NetWeaver Application Server ABAP allows malicious scripts to be executed in the application, potentially leading to a Cross-Site Scripting (XSS) vulnerability. This has no ... |
| 5.7 | 2025-03-11 | CVE-2025-25244 | cve | SAP Business Warehouse (Process Chains) allows an attacker to manipulate the process execution due to missing authorization check. An attacker with display authorization for the... |
| 5.4 | 2025-03-11 | CVE-2025-25245 | cve | SAP BusinessObjects Business Intelligence Platform (Web Intelligence) contains a deprecated web application endpoint that is not properly secured. An attacker could take advanta... |
| 3.1 | 2025-03-11 | CVE-2025-26655 | cve | SAP Just In Time(JIT) does not perform necessary authorization checks for an authenticated user, allowing attacker to escalate privileges that would otherwise be restricted, pot... |
| 4.3 | 2025-03-11 | CVE-2025-26656 | cve | OData Service in Manage Purchasing Info Records does not perform necessary authorization checks for an authenticated user, allowing an attacker to escalate privileges. This has ... |
| 6.8 | 2025-03-11 | CVE-2025-26658 | cve | The Service Layer in SAP Business One, allows attackers to potentially gain unauthorized access and impersonate other users in the application to perform unauthorized actions. D... |
| 6.1 | 2025-03-11 | CVE-2025-26659 | cve | SAP NetWeaver Application Server ABAP does not sufficiently encode user-controlled inputs, leading to DOM-basedCross-Site Scripting (XSS) vulnerability. This allows an attacker ... |
| 4.3 | 2025-03-11 | CVE-2025-26660 | cve | SAP Fiori applications using the posting library fail to properly configure security settings during the setup process, leaving them at default or inadequately defined. This vul... |
| 8.8 | 2025-03-11 | CVE-2025-26661 | cve | Due to missing authorization check, SAP NetWeaver (ABAP Class Builder) allows an attacker to gain higher access levels than they should have, resulting in escalation of privileg... |
| 3.5 | 2025-03-11 | CVE-2025-27430 | cve | Under certain conditions, an SSRF vulnerability in SAP CRM and SAP S/4HANA (Interaction Center) allows an attacker with low privileges to access restricted information. This fla... |
| Page(s) : 1 ... 130 131 132 133 134 135 136 137 138 139 [140] 141 142 143 144 145 146 147 148 149 150 ... | Result(s) : 312940 |
