Vulnerabilities > SAP > Landscape Management > High

DATE CVE VULNERABILITY TITLE RISK
2023-04-11 CVE-2023-26458 Exposure of Resource to Wrong Sphere vulnerability in SAP Landscape Management 3.0
An information disclosure vulnerability exists in SAP Landscape Management - version 3.0, enterprise edition.
network
low complexity
sap CWE-668
8.7
2020-04-14 CVE-2020-6236 Improper Privilege Management vulnerability in SAP Adaptive Extensions and Landscape Management
SAP Landscape Management, version 3.0, and SAP Adaptive Extensions, version 1.0, allows an attacker with admin_group privileges to change ownership and permissions (including S-user ID bit s-bit) of arbitrary files remotely.
network
low complexity
sap CWE-269
7.2
2020-02-12 CVE-2020-6192 Improper Input Validation vulnerability in SAP Landscape Management 3.0
SAP Landscape Management, version 3.0, allows an attacker with admin privileges to execute malicious commands with root privileges in SAP Host Agent via SAP Landscape Management.
network
low complexity
sap CWE-20
7.2
2020-02-12 CVE-2020-6191 Improper Input Validation vulnerability in SAP Landscape Management 3.0
SAP Landscape Management, version 3.0, allows an attacker with admin privileges to execute malicious executables with root privileges in SAP Host Agent via SAP Landscape Management due to Missing Input Validation.
network
low complexity
sap CWE-20
7.2
2019-01-08 CVE-2019-0249 Unspecified vulnerability in SAP Landscape Management 3.0
Under certain conditions SAP Landscape Management (VCM 3.0) allows an attacker to access information which would otherwise be restricted.
network
low complexity
sap
7.5