Filtered by vendor Sap Subscriptions
Filtered by product Business Client Subscriptions
Total 4 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-38150 1 Sap 1 Business Client 2024-11-21 6.5 Medium
When an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will allow him to read extremely sensitive data, such as credentials. This would allow the attacker to compromise the corresponding backend for which the credentials are valid.
CVE-2020-6244 1 Sap 1 Business Client 2024-11-21 7.8 High
SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories that can be executed by the application, due to uncontrolled search path element. An attacker could thereby control the behavior of the application.
CVE-2020-6228 1 Sap 1 Business Client 2024-11-21 7.5 High
SAP Business Client, versions 6.5, 7.0, does not perform necessary integrity checks which could be exploited by an attacker under certain conditions to modify the installer.
CVE-2018-2398 1 Sap 1 Business Client 2024-11-21 N/A
Under certain conditions SAP Business Client 6.5 allows an attacker to access information which would otherwise be restricted.