Vulnerabilities > SAP > Advanced Business Application Programming Platform Krnl32Uc > Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2019-03-12	CVE-2019-0270	Missing Authorization vulnerability in SAP products ABAP Server of SAP NetWeaver and ABAP Platform fail to perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. network low complexity sap CWE-862	6.5
2019-02-15	CVE-2019-0265	XXE vulnerability in SAP products SLD Registration of ABAP Platform allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. network low complexity sap CWE-611	4.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.