Vulnerabilities > SAP > Simple Diagnostics Agent > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-10 | CVE-2022-24396 | Missing Authentication for Critical Function vulnerability in SAP Simple Diagnostics Agent The Simple Diagnostics Agent - versions 1.0 up to version 1.57, does not perform any authentication checks for functionalities that can be accessed via localhost on http port 3005. | 7.8 |
| 2022-03-10 | CVE-2022-22547 | Unspecified vulnerability in SAP Simple Diagnostics Agent Simple Diagnostics Agent - versions 1.0 (up to version 1.57.), allows an attacker to access information which would otherwise be restricted via a random port 9000-65535. | 7.5 |