← Back

Netweaver Guided Procedures

netweaver_guided_procedures

Vendor: Sap • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-33671
1Sap
1Netweaver Guided Procedures
Nov 21, 2024
Jul 14, 2021
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
SAP NetWeaver Guided Procedures (Administration Workset), versions - 7.10, 7.20, 7.30, 7.31, 7.40, 7.50, does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. T...Show more
SAP NetWeaver Guided Procedures (Administration Workset), versions - 7.10, 7.20, 7.30, 7.31, 7.40, 7.50, does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. The impact of missing authorization could result to abuse of functionality restricted to a particular user group, and could allow unauthorized users to read, modify or delete restricted data.Show less
CVE-2020-6187
1Sap
1Netweaver Guided Procedures
Nov 21, 2024
Feb 12, 2020
N/A· v4
4.9 MEDIUM· v3
4.0 MEDIUM· v2
SAP NetWeaver (Guided Procedures), versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently validate an XML document input from a compromised admin, leading to Denial of Service.