Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Business_client
(Sap)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 4 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2018-03-14 | CVE-2018-2398 | Under certain conditions SAP Business Client 6.5 allows an attacker to access information which would otherwise be restricted. | Business_client | 7.5 | ||
| 2020-04-14 | CVE-2020-6228 | SAP Business Client, versions 6.5, 7.0, does not perform necessary integrity checks which could be exploited by an attacker under certain conditions to modify the installer. | Business_client | 7.5 | ||
| 2020-05-12 | CVE-2020-6244 | SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories that can be executed by the application, due to uncontrolled search path element. An attacker could thereby control the behavior of the application. | Business_client | 7.8 | ||
| 2021-09-14 | CVE-2021-38150 | When an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will allow him to read extremely sensitive data, such as credentials. This would allow the attacker to compromise the corresponding backend for which the credentials are valid. | Business_client | 6.5 |