Vulnerabilities > SAP > Basis > High

DATE CVE VULNERABILITY TITLE RISK
2022-12-13 CVE-2022-41264 Code Injection vulnerability in SAP Basis
Due to the unrestricted scope of the RFC function module, SAP BASIS - versions 731, 740, 750, 751, 752, 753, 754, 755, 756, 757, 789, 790, 791, allows an authenticated non-administrator attacker to access a system class and execute any of its public methods with parameters provided by the attacker.
network
low complexity
sap CWE-94
8.8
2018-11-13 CVE-2018-2478 Unspecified vulnerability in SAP Basis
An attacker can use specially crafted inputs to execute commands on the host of a TREX / BWA installation, SAP Basis, versions: 7.0 to 7.02, 7.10 to 7.11, 7.30, 7.31, 7.40 and 7.50 to 7.53.
network
low complexity
sap
7.2