Vulnerabilities > SAP > Simple Diagnostics Agent

DATE CVE VULNERABILITY TITLE RISK
2022-03-10 CVE-2022-24396 Missing Authentication for Critical Function vulnerability in SAP Simple Diagnostics Agent
The Simple Diagnostics Agent - versions 1.0 up to version 1.57, does not perform any authentication checks for functionalities that can be accessed via localhost on http port 3005.
local
low complexity
sap CWE-306
7.8
2022-03-10 CVE-2022-22547 Unspecified vulnerability in SAP Simple Diagnostics Agent
Simple Diagnostics Agent - versions 1.0 (up to version 1.57.), allows an attacker to access information which would otherwise be restricted via a random port 9000-65535.
network
low complexity
sap
7.5