Vulnerabilities > SAP > Netweaver Guided Procedures > 7.50

DATE CVE VULNERABILITY TITLE RISK
2021-07-14 CVE-2021-33671 Missing Authorization vulnerability in SAP Netweaver Guided Procedures
SAP NetWeaver Guided Procedures (Administration Workset), versions - 7.10, 7.20, 7.30, 7.31, 7.40, 7.50, does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
network
low complexity
sap CWE-862
6.5
2020-02-12 CVE-2020-6187 XXE vulnerability in SAP Netweaver Guided Procedures
SAP NetWeaver (Guided Procedures), versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently validate an XML document input from a compromised admin, leading to Denial of Service.
network
low complexity
sap CWE-611
4.0