Vulnerabilities > SAP > Content Server > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-09-12 CVE-2023-40309 Unspecified vulnerability in SAP products
SAP CommonCryptoLib does not perform necessary authentication checks, which may result in missing or wrong authorization checks for an authenticated user, resulting in escalation of privileges.
network
low complexity
sap
critical
9.8
2022-02-09 CVE-2022-22536 Unspecified vulnerability in SAP products
SAP NetWeaver Application Server ABAP, SAP NetWeaver Application Server Java, ABAP Platform, SAP Content Server 7.53 and SAP Web Dispatcher are vulnerable for request smuggling and request concatenation.
network
low complexity
sap
critical
10.0