Latest sap content server Vulnerabilities

● CVE-2023-40309

SAP CommonCryptoLib does not perform necessary authentication checks, which may result in missing or wrong authorization checks for an authenticated user, resulting in escalation of privileges. Depend...

SAP CommonCryptoLib=8.0.0

SAP Content Server=6.50

SAP Content Server=7.53

SAP Content Server=7.54

Sap Extended Application Services And Runtime=1.0

SAP HANA Database=2.0

and 41 more

● CVE-2023-40308

SAP CommonCryptoLib allows an unauthenticated attacker to craft a request, which when submitted to an open port causes a memory corruption error in a library which in turn causes the target component ...

SAP CommonCryptoLib=8.0.0

SAP Content Server=6.50

SAP Content Server=7.53

SAP Content Server=7.54

Sap Extended Application Services And Runtime=1.0

SAP HANA Database=2.0

and 41 more

● CVE-2023-26457

SAP Content Server - version 7.53, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. After successful exploitation, an attacker can read and m...

SAP Content Server=7.53

● CVE-2022-22536

SAP Multiple Products HTTP Request Smuggling Vulnerability

SAP Content Server=7.53

SAP NetWeaver Application Server ABAP=7.22

SAP NetWeaver Application Server ABAP=7.49

SAP NetWeaver Application Server ABAP=7.53

SAP NetWeaver Application Server ABAP=7.77

SAP NetWeaver Application Server ABAP=7.81

and 21 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.