Sap Security Vulnerabilities (CVEs)

Track 221 security vulnerabilities affecting Sap products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

47 Critical

114 High

58 Medium

2 Low

Sort by:

🔔 Get Alerts for Sap

CVE-2021-21487 8.8

CVE-2021-21487 is an authorization bypass vulnerability in SAP Payment Engine version 500 that allows authenticated users to escalate privileges witho...

Mar 9, 2021

CVE-2021-21480 8.8

CVE-2021-21480 is a critical remote code execution vulnerability in SAP MII's Self Service Composition Environment (SSCE). Attackers with developer ac...

Mar 9, 2021

CVE-2021-21484 9.8

This vulnerability allows attackers to bypass LDAP authentication in SAP HANA Database when the LDAP directory server is configured to permit unauthen...

Mar 9, 2021

CVE-2021-21469 7.5

This vulnerability in SAP NetWeaver Master Data Management allows attackers to set custom UNC paths in MDS server configuration, potentially enabling ...

Jan 12, 2021

CVE-2021-21453 8.8

CVE-2021-21453 is a vulnerability in SAP 3D Visual Enterprise Viewer version 9 that allows attackers to crash the application by tricking users into o...

Jan 12, 2021

CVE-2021-21455 8.8

CVE-2021-21455 is a memory corruption vulnerability in SAP 3D Visual Enterprise Viewer version 9 caused by improper input validation when processing D...

Jan 12, 2021

CVE-2021-21457 8.8

CVE-2021-21457 is a memory corruption vulnerability in SAP 3D Visual Enterprise Viewer version 9 caused by improper input validation when processing I...

Jan 12, 2021

CVE-2021-21459 8.8

CVE-2021-21459 is a memory corruption vulnerability in SAP 3D Visual Enterprise Viewer version 9 caused by improper input validation when processing I...

Jan 12, 2021

CVE-2021-21461 8.8

CVE-2021-21461 is a critical vulnerability in SAP 3D Visual Enterprise Viewer version 9 that allows attackers to crash the application by tricking use...

Jan 12, 2021

CVE-2021-21463 8.8

CVE-2021-21463 is a vulnerability in SAP 3D Visual Enterprise Viewer version 9 that allows attackers to crash the application by tricking users into o...

Jan 12, 2021

CVE-2021-21446 7.5

CVE-2021-21446 is a denial-of-service vulnerability in SAP NetWeaver AS ABAP that allows unauthenticated attackers to crash or flood the service, prev...

Jan 12, 2021

CVE-2021-21449 8.8

CVE-2021-21449 is a memory corruption vulnerability in SAP 3D Visual Enterprise Viewer version 9 caused by improper input validation when processing I...

Jan 12, 2021

CVE-2021-21451 8.8

CVE-2021-21451 is a vulnerability in SAP 3D Visual Enterprise Viewer version 9 that allows attackers to crash the application by tricking users into o...

Jan 12, 2021

CVE-2020-26829 10.0

CVE-2020-26829 is a critical authentication bypass vulnerability in SAP NetWeaver AS JAVA's P2P cluster communication. It allows unauthenticated attac...

Dec 9, 2020

CVE-2020-26831 9.6

This vulnerability in SAP BusinessObjects BI Platform allows attackers with basic privileges to upload malicious XML entities during crystal report ge...

Dec 9, 2020

CVE-2020-26837 9.1

CVE-2020-26837 is a path traversal vulnerability in SAP Solution Manager 7.2's User Experience Monitoring component that allows authenticated users to...

Dec 9, 2020

CVE-2020-26821 10.0

CVE-2020-26821 is a critical vulnerability in SAP Solution Manager's SVG Converter Service that allows unauthenticated attackers to compromise the sys...

Nov 10, 2020

CVE-2020-26823 10.0

This vulnerability allows unauthenticated attackers to compromise SAP Solution Manager systems due to missing authorization checks in the Upgrade Diag...

Nov 10, 2020

CVE-2020-6364 10.0

CVE-2020-6364 is a critical OS command injection vulnerability in SAP Solution Manager and SAP Focused Run that allows attackers to execute arbitrary ...

Oct 15, 2020

CVE-2020-6294 9.1

CVE-2020-6294 is an authentication bypass vulnerability in SAP Business Objects Business Intelligence Platform's Xvfb component on Unix systems. Attac...

Aug 12, 2020

CVE-2020-6284 9.0

CVE-2020-6284 is a stored cross-site scripting (XSS) vulnerability in SAP NetWeaver Knowledge Management that allows automatic execution of malicious ...

Aug 12, 2020

← Previous Page 5 of 5

Why Monitor Sap Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 221+ known vulnerabilities affecting Sap products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Sap packages in under 60 seconds. No agents required - completely agentless scanning that works across Sap deployments.

Free vulnerability database: Access detailed information about every Sap CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

Register free account & add your servers
Run one-time scan or schedule automatic monitoring (every 1-24 hours)
Receive instant alerts when new Sap CVEs affect your systems
Access dashboard with severity breakdown & fix instructions

Start Monitoring Sap CVEs Free