Known Vulnerabilities for Cloud Connector by Sap
Listed below are 6 of the newest known vulnerabilities associated with "Cloud Connector" by "Sap".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-33695 json | Potentially, SAP Cloud Connector, version - 2.0 communication with the backend is accepted without sufficient validation of t... | 9.1 - CRITICAL | 2021-09-15 | 2021-09-28 |
| CVE-2021-33694 json | SAP Cloud Connector, version - 2.0, does not sufficiently encode user-controlled inputs, allowing an attacker with Administra... | 4.8 - MEDIUM | 2021-09-15 | 2021-09-28 |
| CVE-2021-33693 json | SAP Cloud Connector, version - 2.0, allows an authenticated administrator to modify a configuration file to inject malicious ... | 6.8 - MEDIUM | 2021-09-15 | 2021-09-27 |
| CVE-2021-33692 json | SAP Cloud Connector, version - 2.0, allows the upload of zip files as backup. This backup file can be tricked to inject speci... | 7.5 - HIGH | 2021-09-15 | 2021-09-28 |
| CVE-2019-0247 json | SAP Cloud Connector, before version 2.11.3, allows an attacker to inject code that can be executed by the application. An att... | 9.8 - CRITICAL | 2019-01-08 | 2019-01-17 |
| CVE-2019-0246 json | SAP Cloud Connector, before version 2.11.3, does not perform any authentication checks for functionalities that require user ... | 9.8 - CRITICAL | 2019-01-08 | 2020-08-24 |