Vulnerabilities > SAP > Basis > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-01-14 CVE-2020-6307 Information Exposure vulnerability in SAP Basis
Automated Note Search Tool (update provided in SAP Basis 7.0, 7.01, 7.02, 7.31, 7.4, 7.5, 7.51, 7.52, 7.53 and 7.54) does not perform sufficient authorization checks leading to the reading of sensitive information.
network
low complexity
sap CWE-200
4.0
2019-01-08 CVE-2019-0248 Unspecified vulnerability in SAP Basis and Netweaver
Under certain conditions SAP Gateway of ABAP Application Server (fixed in SAP_GWFND 7.5, 7.51, 7.52, 7.53; SAP_BASIS 7.5) allows an attacker to access information which would otherwise be restricted.
network
sap
4.3
2018-11-13 CVE-2018-2478 Unspecified vulnerability in SAP Basis
An attacker can use specially crafted inputs to execute commands on the host of a TREX / BWA installation, SAP Basis, versions: 7.0 to 7.02, 7.10 to 7.11, 7.30, 7.31, 7.40 and 7.50 to 7.53.
network
low complexity
sap
6.5