Sap Vulnerabilities
Comprehensive security vulnerability database for Sap products
2
3
9
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2022-35226 | 6.1 | This vulnerability allows an attacker to inject malicious scripts into the responses of certain pages in the SAP Data Services Management console, potentially compromising users who view those responses. However, the attacker must first log in to the management console, limiting the risk to those with access. | sapdata services | Theoretical | over 3 years agoOct 11, 2022 |
| CVE-2022-22529 | 6.1 | An attacker can exploit a weakness in SAP Enterprise Threat Detection to inject malicious scripts into the user interface, potentially allowing them to steal sensitive information or perform actions on behalf of other users. This vulnerability arises because the system does not properly handle user inputs, and it mainly affects the web interfaces that rely on the SAP UI5 framework. | sapenterprise threat detection | Exploit Available | about 4 years agoJan 14, 2022 |
About Sap Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Sap products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.