Vulnerabilities > SAP

DATE CVE VULNERABILITY TITLE RISK
2016-01-15 CVE-2016-1910 Information Exposure vulnerability in SAP Netweaver 7.40
The User Management Engine (UME) in SAP NetWeaver 7.4 allows attackers to decrypt unspecified data via unknown vectors, aka SAP Security Note 2191290.
network
low complexity
sap CWE-200
5.3
2016-01-08 CVE-2015-8753 Permissions, Privileges, and Access Controls vulnerability in SAP Afaria 7.0.6001.5
SAP Afaria 7.0.6001.5 allows remote attackers to bypass authorization checks and wipe or lock mobile devices via a crafted request, related to "Insecure signature," aka SAP Security Note 2134905.
network
low complexity
sap CWE-264
critical
9.1