Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

SAP S/4HANAMissing Authorization Check in SAP S/4HANA (Private Cloud and On-Premise)

Risk 32
Severity
4.9
First published (updated )
CVE-2026-27673

SAP SAP BASISMissing Authorization check in SAP NetWeaver Application Server ABAP and SAP S/4HANA

Risk 38
Severity
6.5
First published (updated )
CVE-2026-0484

SAP ERP Central ComponentMissing Authorization check in in SAP ERP Central Component and SAP S/4HANA (SAP EHS Management)

Risk 28
Severity
6.4
EPSS
0.06%
First published (updated )
CVE-2026-0503

SAP S/4HANAMissing Authorization Check in SAP S/4HANA (Enterprise Event Enablement)

Risk 57
Severity
6.7
First published (updated )
CVE-2025-42993

SAP S4COREOdata meta-data tampering in SAP S4CORE entity

Risk 16
Severity
4.3
EPSS
0.03%
First published (updated )
CVE-2025-31333
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP S\/4 HanaHTTP Verb Tampering in SAP S/4 HANA(Manage Bank Statements)

Risk 27
Severity
5.3
First published (updated )
CVE-2024-45282

SAP S/4 HANAInformation Disclosure in SAP S/4 HANA (Statutory Reports)

Risk 22
Severity
4.3
First published (updated )
CVE-2024-44121

SAP S4CORE[CVE-2024-37172] Missing Authorization check in SAP S/4HANA Finance (Advanced Payment Management)

Risk 34
Severity
5.4
First published (updated )
CVE-2024-37172

SAP S\/4 HanaMissing Authorization check in SAP S/4HANA (Manage Incoming Payment Files)

Risk 38
Severity
6.5
First published (updated )
CVE-2024-34691

SAP S/4HANACross-Site Scripting (XSS) Vulnerability in SAP S/4HANA (Document Service Handler for DPS)

Risk 38
Severity
6.1
First published (updated )
CVE-2024-33002
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP S\/4hanaInformation Disclosure Vulnerability in Statutory Reporting

Risk 22
Severity
4.3
First published (updated )
CVE-2023-42475

SAP S\/4hanaMissing Authorization Check In S/4HANA (Manage Withholding Tax Items)

Risk 34
Severity
5.4
First published (updated )
CVE-2023-42473

SAP S4COREMissing Authorization check in SAP Manage Purchase Contracts App

Risk 34
Severity
5.4
First published (updated )
CVE-2023-40625

SAP S\/4 HanaInsecure Direct Object Reference (IDOR) vulnerability in S4 HANA (Manage checkbook apps)

Risk 27
Severity
5.3
First published (updated )
CVE-2023-41368

SAP S\/4 HanaExternal Entity Loop vulnerability in SAP S/4HANA (Create Single Payment application)

Risk 22
Severity
4.3
First published (updated )
CVE-2023-41369
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP S\/4hanaURL Redirection vulnerability in SAP S/4HANA (Manage Catalog Items and Cross-Catalog search)

Risk 38
Severity
6.1
First published (updated )
CVE-2023-40306

SAP Vendor Master HierarchyMissing Authorization Check in Vendor Master Hierarchy

Risk 32
Severity
5.5
First published (updated )
CVE-2023-32112

SAP ABAP PlatformCode Injection vulnerability in SAP Application Interface Framework (Message Dashboard)

Risk 34
Severity
5.4
First published (updated )
CVE-2023-29110

SAP ABAP PlatformCode Injection vulnerability in SAP Application Interface Framework (Message Dashboard)

Risk 30
Severity
4.6
First published (updated )
CVE-2023-29109

SAP S\/4hanaSAP S/4 HANA Map Treasury Correspondence Format Data does not perform necessary authorization check …

Risk 38
Severity
6.5
First published (updated )
CVE-2023-24524
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP S\/4hanaInput Validation

Risk 27
Severity
5.3
First published (updated )
CVE-2022-32248

SAP S\/4hanaWithin SAP S/4HANA - versions S4CORE 101, 102, 103, 104, 105, 106, SAPSCORE 127, the application bus…

Risk 34
Severity
5.5
First published (updated )
CVE-2022-31597

SAP S\/4hanaDue to improper authorization check, business users who are using Israeli File from SHAAM program (/…

Risk 38
Severity
6.5
First published (updated )
CVE-2022-31589

SAP S\/4hanaInfoleak

Risk 38
Severity
6.5
First published (updated )
CVE-2022-22542

SAP ERPSAP ERP and SAP S/4 HANA allows an authenticated user to see cost records to objects to which he has…

Risk 22
Severity
4.3
First published (updated )
CVE-2020-6316
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

SAP S\/4 Hana Fiori Ui For General Ledger AccountingSAP S/4 HANA (Fiori UI for General Ledger Accounting), versions 103, 104, does not perform necessary…

Risk 22
Severity
4.3
First published (updated )
CVE-2020-6273

SAP S\/4hanaEgypt localized withholding tax reports Clearing of Liabilities and Remittance Statement and Summary…

Risk 34
Severity
5.5
First published (updated )
CVE-2020-6212

SAP S\/4hanaXSS

Risk 34
Severity
5.4
First published (updated )
CVE-2020-6185

SAP S\/4hanaXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2020-6184

SAP EA-FINSERVSAP Enterprise Financial Services (SAPSCORE 1.11, 1.12; S4CORE 1.01, 1.02; EA-FINSERV 6.04, 6.05, 6.…

Risk 34
Severity
5.5
First published (updated )
CVE-2018-2419
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203