| Max CVSS | 10.0 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-2473 | 4.0 |
SAP BusinessObjects Business Intelligence Platform Server, versions 4.1 and 4.2, when using Web Intelligence Richclient 3 tiers mode gateway allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the s
|
24-08-2020 - 17:37 | 13-11-2018 - 20:29 | |
| CVE-2018-2478 | 6.5 |
An attacker can use specially crafted inputs to execute commands on the host of a TREX / BWA installation, SAP Basis, versions: 7.0 to 7.02, 7.10 to 7.11, 7.30, 7.31, 7.40 and 7.50 to 7.53. Not all commands are possible, only those that can be execut
|
24-08-2020 - 17:37 | 13-11-2018 - 20:29 | |
| CVE-2018-2482 | 5.0 |
SAP Mobile Secure Android Application, Mobile-secure.apk Android client, before version 6.60.19942.0, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. Install the Mobile Secure Andro
|
24-08-2020 - 17:37 | 13-11-2018 - 20:29 | |
| CVE-2018-2487 | 5.1 |
SAP Disclosure Management 10.x allows an attacker to exploit through a specially crafted zip file provided by users: When extracted in specific use cases, files within this zip file can land in different locations than the originally intended extract
|
24-08-2020 - 17:37 | 13-11-2018 - 20:29 | |
| CVE-2018-2481 | 6.5 |
In some SAP standard roles, in SAP_ABA versions, 7.00 to 7.02, 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50, 75C to 75D, a transaction code reserved for customer is used. By implementing such transaction code a malicious user may execute unauthorized transac
|
03-10-2019 - 00:03 | 13-11-2018 - 20:29 | |
| CVE-2018-15979 | 5.0 |
Adobe Acrobat and Reader versions 2019.008.20080 and earlier, 2017.011.30105 and earlier, and 2015.006.30456 and earlier have a ntlm sso hash theft vulnerability. Successful exploitation could lead to information disclosure.
|
21-08-2019 - 16:20 | 29-11-2018 - 20:29 | |
| CVE-2018-2477 | 6.5 |
Knowledge Management (XMLForms) in SAP NetWeaver, versions 7.30, 7.31, 7.40 and 7.50 does not sufficiently validate an XML document accepted from an untrusted source.
|
01-02-2019 - 15:44 | 13-11-2018 - 20:29 | |
| CVE-2018-15978 | 5.0 |
Flash Player versions 31.0.0.122 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
|
28-12-2018 - 20:01 | 29-11-2018 - 20:29 | |
| CVE-2018-15980 | 5.0 |
Adobe Photoshop CC versions 19.1.6 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
|
04-12-2018 - 18:07 | 29-11-2018 - 20:29 | |
| CVE-2018-2479 | 4.3 |
SAP BusinessObjects Business Intelligence Platform (BIWorkspace), versions 4.1 and 4.2, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
|
24-11-2018 - 02:47 | 13-11-2018 - 20:29 | |
| CVE-2004-0460 | 10.0 |
Buffer overflow in the logging capability for the DHCP daemon (DHCPD) for ISC DHCP 3.0.1rc12 and 3.0.1rc13 allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via multiple hostname options in (1) DI
|
11-07-2017 - 01:30 | 06-08-2004 - 04:00 |