Vulnerabilities > SAP > Host Agent

DATE CVE VULNERABILITY TITLE RISK
2024-11-12 CVE-2024-47595 Unspecified vulnerability in SAP Host Agent 7.22
An attacker who gains local membership to sapsys group could replace local files usually protected by privileged access.
local
low complexity
sap
7.1
2023-09-12 CVE-2023-40309 Incorrect Authorization vulnerability in SAP products
SAP CommonCryptoLib does not perform necessary authentication checks, which may result in missing or wrong authorization checks for an authenticated user, resulting in escalation of privileges.
network
low complexity
sap CWE-863
critical
9.8
2023-09-12 CVE-2023-40308 Out-of-bounds Write vulnerability in SAP products
SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted to an open port causes a memory corruption error in a library which in turn causes the target component to crash making it unavailable.
network
low complexity
sap CWE-787
7.5
2023-08-08 CVE-2023-36926 Missing Authentication for Critical Function vulnerability in SAP Host Agent 7.22
Due to missing authentication check in SAP Host Agent - version 7.22, an unauthenticated attacker can set an undocumented parameter to a particular compatibility value and in turn call read functions.
network
low complexity
sap CWE-306
5.3
2023-03-14 CVE-2023-27498 Stack-based Buffer Overflow vulnerability in SAP Host Agent 7.22
SAP Host Agent (SAPOSCOL) - version 7.22, allows an unauthenticated attacker with network access to a server port assigned to the SAP Start Service to submit a crafted request which results in a memory corruption error.
network
low complexity
sap CWE-121
7.2
2023-02-14 CVE-2023-24523 Exposure of Resource to Wrong Sphere vulnerability in SAP Host Agent 7.21/7.22
An attacker authenticated as a non-admin user with local access to a server port assigned to the SAP Host Agent (Start Service) - versions 7.21, 7.22, can submit a crafted ConfigureOutsideDiscovery request with an operating system command which will be executed with administrator privileges.  The OS command can read or modify any user or system data and can make the system unavailable.
local
low complexity
sap CWE-668
8.8
2023-01-10 CVE-2023-0012 Improper Access Control vulnerability in SAP Host Agent 7.21/7.22
In SAP Host Agent (Windows) - versions 7.21, 7.22, an attacker who gains local membership to SAP_LocalAdmin could be able to replace executables with a malicious file that will be started under a privileged account.
local
low complexity
sap CWE-284
6.7
2022-09-13 CVE-2022-35295 Improper Handling of Exceptional Conditions vulnerability in SAP Host Agent 7.22
In SAP Host Agent (SAPOSCOL) - version 7.22, an attacker may use files created by saposcol to escalate privileges for themselves.
network
low complexity
sap CWE-755
4.9
2022-06-14 CVE-2022-29614 Improper Privilege Management vulnerability in SAP Host Agent and Netweaver Abap
SAP startservice - of SAP NetWeaver Application Server ABAP, Application Server Java, ABAP Platform and HANA Database - versions KERNEL 7.22, 7.49, 7.53, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC 7.22, 7.22EXT, 7.49, 7.53, SAPHOSTAGENT 7.22, - on Unix systems, s-bit helper program sapuxuserchk, can be abused physically resulting in a privilege escalation of an attacker leading to low impact on confidentiality and integrity, but a profound impact on availability.
low complexity
sap CWE-269
5.0
2022-06-14 CVE-2022-29612 Server-Side Request Forgery (SSRF) vulnerability in SAP Host Agent and Netweaver Abap
SAP NetWeaver, ABAP Platform and SAP Host Agent - versions KERNEL 7.22, 7.49, 7.53, 7.77, 7.81, 7.85, 7.86, 7.87, 7.88, 8.04, KRNL64NUC 7.22, 7.22EXT, 7.49, KRNL64UC 7.22, 7.22EXT, 7.49, 7.53, 8.04, SAPHOSTAGENT 7.22, allows an authenticated user to misuse a function of sapcontrol webfunctionality(startservice) in Kernel which enables malicious users to retrieve information.
network
low complexity
sap CWE-918
4.3