Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
  • 7.5

    HIGH
    CVE-2021-21469

    When security guidelines for SAP NetWeaver Master Data Management running on windows have not been thoroughly reviewed, it might be possible for an external operator to try and set custom paths in the MDS server configuration. When no adequate protection ... Read more

    Affected Products : netweaver_master_data_management
    • EPSS Score: %0.20
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 6.5

    MEDIUM
    CVE-2021-21468

    The BW Database Interface does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges that allows the user to practically read out any database table.... Read more

    Affected Products : business_warehouse
    • EPSS Score: %0.43
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 4.3

    MEDIUM
    CVE-2021-21467

    SAP Banking Services (Generic Market Data) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. An unauthorized User is allowed to display restricted Business Partner Generic Market Data (GMD), ... Read more

    Affected Products : banking_services
    • EPSS Score: %0.17
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 9.9

    CRITICAL
    CVE-2021-21466

    SAP Business Warehouse, versions 700, 701, 702, 711, 730, 731, 740, 750, 782 and SAP BW/4HANA, versions 100, 200, allow a low privileged attacker to inject code using a remote enabled function module over the network. Via the function module an attacker c... Read more

    Affected Products : business_warehouse bw\/4hana
    • EPSS Score: %0.76
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 9.9

    CRITICAL
    CVE-2021-21465

    The BW Database Interface allows an attacker with low privileges to execute any crafted database queries, exposing the backend database. An attacker can include their own SQL commands which the database will execute without properly sanitizing the untrust... Read more

    Affected Products : business_warehouse
    • EPSS Score: %1.43
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 4.3

    MEDIUM
    CVE-2021-21464

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PCX file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.31
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21463

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PCX file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21462

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PCX file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21461

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated BMP file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21460

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21459

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated IFF file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21458

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated IFF file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21457

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated IFF file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21456

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21455

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21454

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated RLE file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21453

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated RLE file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21452

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated GIF file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21451

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated SGI file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2021-21450

    SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PSD file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is cau... Read more

    Affected Products : 3d_visual_enterprise_viewer
    • EPSS Score: %0.48
    • Published: Jan. 12, 2021
    • Modified: Nov. 21, 2024
Showing 20 of 291641 Results