Vulnerabilities > SAP > Solution Manager > Low

DATE CVE VULNERABILITY TITLE RISK
2019-06-12 CVE-2019-0307 Missing Encryption of Sensitive Data vulnerability in SAP Solution Manager 7.2
Diagnostics Agent in Solution Manager, version 7.2, stores several credentials such as SLD user connection as well as Solman user communication in the SAP Secure Storage file which is not encrypted by default.
low complexity
sap CWE-311
2.7
2019-05-14 CVE-2019-0291 Unspecified vulnerability in SAP Solution Manager 7.2
Under certain conditions Solution Manager, version 7.2, allows an attacker to access information which would otherwise be restricted.
local
low complexity
sap
2.1
2018-04-10 CVE-2018-2405 Cross-site Scripting vulnerability in SAP Solution Manager 7.10/7.20
SAP Solution Manager, 7.10, 7.20, Incident Management Work Center allows an attacker to upload a malicious script as an attachment and this could lead to possible Cross-Site Scripting.
network
sap CWE-79
3.5