This repository contains Security Advisories for vulnerabilities reported by the Onapsis Research Labs team
The following table is a summary of the vulnerabilties described in this repository:
| Vendor | CVE | CVSS | Description | Link to Report |
|---|---|---|---|---|
| SAP | CVE-2022-27657 | 2.7 | Directory Traversal vulnerability in SAP Focused Run (Simple Diagnostics Agent 1.0) | ONAPSIS-2022-0007 |
| SAP | CVE-2022-22547 | 5.3 | Information Disclosure vulnerability in SAP Focused Run (Simple Diagnostics Agent 1.0) | ONAPSIS-2022-0006 |
| SAP | CVE-2022-26101 | 8.2 | Cross-Site Scripting (XSS) vulnerability in SAP Fiori launchpad | ONAPSIS-2022-0005 |
| SAP | CVE-2022-24396 | 9.3 | Missing Authentication check in SAP Focused Run (Simple Diagnostics Agent 1.0) | ONAPSIS-2022-0004 |
| SAP | CVE-2022-24399 | 5.4 | Cross-Site Scripting (XSS) vulnerability in SAP Focused Run (Real User Monitoring) | ONAPSIS-2022-0003 |
| SAP | CVE-2021-33670 | 7.5 | Denial of Service in SAP NetWeaver JAVA | ONAPSIS-2022-0002 |
| SAP | CVE-2021-38162 | 8.9 | HTTP Request Smuggling in SAP Web Dispatcher | ONAPSIS-2022-0001 |
| SAP | CVE-2021-37531 | 9.9 | SAP Enterprise Portal - XSLT injection | ONAPSIS-2021-0026 |
| SAP | CVE-2021-38177 | 7.5 | Null Pointer Dereference vulnerability in SAP CommonCryptoLib | ONAPSIS-2021-0025 |
| SAP | CVE-2021-33707 | 6.1 | SAP Enterprise Portal - Anonymous Stored Open Redirect | ONAPSIS-2021-0024 |
| SAP | CVE-2021-33705 | 8.1 | SAP Enterprise Portal - SSRF iviewCatcherEditor | ONAPSIS-2021-0023 |
| SAP | CVE-2021-33703 | 8.3 | SAP Enterprise Portal - XSS RunContentCreation | ONAPSIS-2021-0022 |
| SAP | CVE-2021-33702 | 8.3 | SAP Enterprise Portal - XSS NavigationReporter | ONAPSIS-2021-0021 |
| SAP | CVE-2021-33687 | 4.5 | SAP Enterprise Portal - Exposed sensitive data in html body | ONAPSIS-2021-0020 |
| SAP | CVE-2021-27620 CVE-2021-27622 CVE-2021-27624 CVE-2021-27625 CVE-2021-27626 CVE-2021-27627 |
5.9 | Memory Corruption vulnerability in SAP NetWeaver ABAP IGS service | ONAPSIS-2021-0019 |
| SAP | CVE-2021-27597 CVE-2021-27633 CVE-2021-27634 |
7.5 | Memory Corruption vulnerability in SAP NetWeaver ABAP Gateway service | ONAPSIS-2021-0018 |
| SAP | CVE-2021-27606 CVE-2021-27629 CVE-2021-27630 CVE-2021-27631 CVE-2021-27632 |
7.5 | Memory Corruption vulnerability in SAP NetWeaver ABAP Enqueue service | ONAPSIS-2021-0017 |
| SAP | CVE-2021-27635 | 8.7 | XXE in SAP JAVA NetWeaver System Connections | ONAPSIS-2021-0016 |
| SAP | CVE-2021-27607 CVE-2021-27628 |
7.5 | Memory Corruption vulnerability in SAP NetWeaver ABAP Dispatcher service | ONAPSIS-2021-0015 |
| SAP | CVE-2020-6207 | 9.9 | Missing authorization check in SAP Solution Manager LM-SERVICE Component SP 11 PL 2 | ONAPSIS-2021-0014 |
| SAP | CVE-2020-26829 | 10.0 | Missing Authentication Check In SAP NetWeaver AS JAVA P2P Cluster Communication | ONAPSIS-2021-0013 |
| SAP | CVE-2021-21480 | 9.9 | SAP MII lack of server side validations leads to RCE | ONAPSIS-2021-0012 |
| SAP | CVE-2020-26830 | 7.6 | Missing authorization check in SolMan End-User Experience Monitoring | ONAPSIS-2021-0011 |
| SAP | CVE-2020-26837 | 8.5 | File exfiltration and DoS in SolMan End-User Experience Monitoring | ONAPSIS-2021-0010 |
| SAP | CVE-2020-6369 | 7.5 | Hard-coded Credentials in CA Introscope Enterprise Manager | ONAPSIS-2021-0009 |
| SAP | CVE-2020-6364 | 10.0 | OS Command Injection in CA Introscope Enterprise Manager | ONAPSIS-2021-0008 |
| SAP | CVE-2020-26809 | 7.5 | SAP Hybris eCommerce Exposure of Sensitive Information to an Unauthorized Actor | ONAPSIS-2021-0007 |
| SAP | CVE-2020-26811 | 5.3 | SAP Hybris eCommerce SSRF in acceleratorservices module | ONAPSIS-2021-0006 |
| SAP | CVE-2020-26836 | 3.4 | SAP Solution Manager Open Redirect from Trace Analysis | ONAPSIS-2021-0005 |
| SAP | CVE-2020-26820 | 9.1 | SAP Java OS Remote Code Execution | ONAPSIS-2021-0004 |
| SAP | CVE-2020-6287 | 10.0 | SAP RECON SAP JAVA Unauthenticated execution of configuration tasks | ONAPSIS-2021-0003 |
| SAP | CVE-2020-6234 | 7.2 | SAP Multiple root LPE through SAP Host Control | ONAPSIS-2021-0002 |
| SAP | CVE-2020-6207 | 10.0 | Unauthenticated RCE in SAP SMD Agents through SAP SolMan | ONAPSIS-2021-0001 |