Latest Vulnerabilities Affecting SAP products

Date	CVE	Title	CVSS
2019-06-12	CVE-2019-0314	Improper Access Control vulnerability in SAP Inventory Manager and Work Manager	Medium
2019-06-12	CVE-2019-0315	Information Leak / Disclosure vulnerability in SAP Netweaver Process Integration	Medium
2019-06-12	CVE-2019-0311	Cross-Site Scripting (XSS) vulnerability in SAP R/3 Enterprise	Medium
2019-06-12	CVE-2019-0312	Information Leak / Disclosure vulnerability in SAP Netweaver Process Integration	Medium
2019-06-12	CVE-2019-0307	Credentials Management vulnerability in SAP Solution Manager 7.2	Low
2019-06-12	CVE-2019-0306	Information Leak / Disclosure vulnerability in SAP Hana Extended Application Services 1.0	Medium
2019-06-12	CVE-2019-0308	Code Injection vulnerability in SAP E Commerce	Low
2019-06-12	CVE-2019-0305	Deserialization of Untrusted Data vulnerability in SAP Netweaver Process Integration	Medium
2019-06-12	CVE-2019-0304	Code Injection vulnerability in SAP and products	High
2019-05-14	CVE-2019-0293	Permissions, Privileges, and Access Control vulnerability in SAP Solution Manager System 20081700/20081710/20081740	Medium
2019-05-14	CVE-2019-0280	Improper Authorization vulnerability in SAP Treasury AND Risk Management	Medium
2019-05-14	CVE-2019-0298	Cross-Site Scripting (XSS) vulnerability in SAP E Commerce	Medium
2019-05-14	CVE-2019-0291	Information Leak / Disclosure vulnerability in SAP Solution Manager 7.2	Low
2019-05-14	CVE-2019-0301	Permissions, Privileges, and Access Control vulnerability in SAP Identity Management 2.0	Medium
2019-05-14	CVE-2019-0287	Information Leak / Disclosure vulnerability in SAP Businessobjects 4.2/4.3	Medium

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.