-
-
Notifications
View AllStable version 6.34
A new Stable version 6.34.1 now available for download and installation – You are welcome to try it out! 2025/04/03 | Release notes |[Action required] SAP Security Patch Day - March 2025
SAP Patches released on SAP Security Patch Day - March 11 2025 2025/03/11 | Advisory |[Action required] SAP Security Patch Day - February 2025
SAP Patches released on SAP Security Patch Day - February 11 2025 2025/02/11 | Advisory |[Action required] SAP Security Patch Day - January 2025
SAP Patches released on SAP Security Patch Day - January 14 2025 2025/01/14 | Advisory |[Action required] SAP Security Patch Day - December 2024
SAP Patches released on SAP Security Patch Day - December 10 2024 2024/12/10 | Advisory |[Action required] SAP Security out-of-bound patch - 26 November 2024
SAP out-of-bound Patch released 2024/11/26 | Advisory |[Action required] SAP Security Patch Day - November 2024
SAP Patches released on SAP Security Patch Day - November 12 2024 2024/11/12 | Advisory |SecurityBridge Cloud connectivity
Please ensure to use API key for SecurityBridge Cloud connectivity! 2024/10/14 | News |[Action required] SAP Security Patch Day - October 2024
SAP Patches released on SAP Security Patch Day - October 10 2024 2024/10/08 | Advisory |Stable version 6.30
A new Stable version 6.30.1 now available for download and installation – You are welcome to try it out! 2024/10/03 | Release notes |[Action required] SAP Security Patch Day - September 2024
SAP Patches released on SAP Security Patch Day - September 10 2024 2024/09/10 | Advisory |[Action required] SAP Security Patch Day - August 2024
SAP Patches released on SAP Security Patch Day - August 13 2024 2024/08/13 | Advisory |[Action required] SAP Security Patch Day - July 2024
SAP Patches released on SAP Security Patch Day - July 09 2024 2024/07/09 | Advisory |[Action required] SAP Security Patch Day - June 2024
SAP Patches released on SAP Security Patch Day - June 11 2024 2024/06/11 | Advisory |[Action required] SAP Security Patch Day - May 2024
SAP Patches released on SAP Security Patch Day - May 14 2024 2024/05/14 | Advisory |[Action required] SAP Security Patch Day - April 2024
SAP Patches released on SAP Security Patch Day - April 9 2024 2024/04/09 | Advisory |[Action required] SAP Security Patch Day - March 2024
SAP Patches released on SAP Security Patch Day - March 12 2024 2024/03/12 | Advisory |[Action required] SAP Security Patch Day - February 2024
SAP Patches released on SAP Security Patch Day - February 13 2024 2024/02/13 | Advisory |[Action required] SAP Security Patch Day - January 2024
SAP Patches released on SAP Security Patch Day - January 9 2024 2024/01/09 | Advisory |[Action required] SAP Security Patch Day - December 2023
SAP Patches released on SAP Security Patch Day - December 12 2023 2023/12/12 | Advisory |[Action required] SAP Security Patch Day - November 2023
SAP Patches release on SAP Security Patch Day of November on 14th 2023 2023/11/14 | Advisory |[Action required] SAP Security Patch Day - October 2023
SAP Patches release on SAP Security Patch Day of October on 10th 2023 2023/10/10 | Advisory |[Action required] SAP Security Patch Day - September 2023
SAP Patches release on SAP Security Patch Day of September on 12th 2023 2023/09/12 | Advisory |[Action required] SAP Security Patch Day - August 2023
SAP Patches release on SAP Security Patch Day of August on 8th 2023 2023/08/08 | Advisory |[Action required] SAP Security Patch Day - July 2023
SAP Patches release on SAP Security Patch Day of July on 11th 2023 2023/07/11 | Advisory |[Action required] SAP Security Patch Day - June 2023
SAP Patches release on SAP Security Patch Day of June on 13th 2023 2023/06/13 | Advisory |[Action required] SAP Security Patch Day - May 2023
SAP Patches release on SAP Security Patch Day of May on 9th 2023 2023/05/09 | Advisory |[Action required] SAP Security Patch Day - April 2023
SAP Patches release on SAP Security Patch Day of April on 11th 2023 2023/04/11 | Advisory |[Action required] SAP Security Patch Day - March 2023
SAP Patches release on SAP Security Patch Day of March on 14th 2023 2023/03/14 | Advisory |[Action required] SAP Security Patch Day - February 2023
SAP Patches release on SAP Security Patch Day of February on 14th 2023 2023/02/14 | Advisory |[Action required] SAP Security Patch Day - January 2023
HotNews Patches release on SAP Security Patch Day of January on 10th 2023 2023/01/10 | Advisory |[Action required] SAP Security Patch Day - December 2022
SAP Security Patch Day of December the 13th 2022 has been provided. 2022/12/13 | Advisory |[Action required] SAP Security Patch Day - September 2022
[Action required] SAP Security Patch Day of September the 13th has been provided 2022/09/13 | Advisory |[Solution available] App not loading
SAP has removed CDN library version used by SecurityBridge App, caused white screen. 2022/08/11 | News |[Action required] SAP Security Patch Day - August 2022
[Action required] SAP Security Patch Day of August the 7th has been provided 2022/07/14 | Advisory |[Action required] SAP Security Patch Day - July 2022
[Action required] SAP Security Patch Day of July the 5th has been provided 2022/07/14 | Advisory |Security Advisory for April 2022
Today we have released the Security Advisories for SAP and the month of April 2022 2022/03/07 | Advisory |Security Advisory for February 2022
Today we have released the Security Advisories for SAP and the month of February 2022 2022/02/18 | Advisory |Security Advisory for March 2022
Today we have released the Security Advisories for SAP and the month of March 2022 2022/03/07 | Advisory |Security Advisory for January 2022
Today we have released the Security Advisories for SAP and the month of January 2022 2022/01/07 | Advisory |Security Advisory for December 2021
Today we have released the Security Advisories for SAP and the month of December 2021 2021/12/27 | Advisory |GUIDANCE FOR PREVENTING, DETECTING, AND HUNTING FOR CVE-2021-44228 LOG4J 2 EXPLOITATION IN SAP SYSTEMS
Apache Log4j2 2.14.1 and below are susceptible to a remote code execution (RCE) vulnerability. 2021/12/01 | News |Security Advisory for October 2021
Today we have released the Security Advisories for SAP and the month of October 2021 2021/10/03 | Advisory |Security Advisory for September 2021
Today we have released the Security Advisories for SAP and the month of September 2021 2021/09/27 | Advisory |Security Advisory for July 2021
Today we have released the Security Advisories for SAP and the month of July 2021 2021/08/09 | Advisory |Security Advisory for June 2021
Today we have released the Security Advisories for SAP and the month of June 2021 2021/08/09 | Advisory |Security Advisory for May 2021
Today we have released the Security Advisories for SAP and the month of May 2021 2021/04/07 | Advisory |Security Advisory for April 2021
Today we have released the Security Advisories for SAP and the month of April 2021 2021/04/07 | Advisory |Security Advisory for February 2021
Today we have released the Security Advisories for SAP and the month of February 2021 2021/02/04 | Advisory |Security Advisory for January 2021
Today we have released the Security Advisories for SAP and the month of January 2021 2021/02/04 | Advisory |Security Advisory for December 2020
Today we have released the Security Advisories for the month of December 2020 2021/01/13 | Advisory |Security Advisory for November 2020
Today we have released the Security Advisories for the month of November 2020 2020/11/24 | Advisory |Start your journey on the road to securing SAP
A new whitepaper has been published describing the important milestones and steps on your road to secure SAP. 2020/11/24 | Advisory |
Advisories for SAP_UI 755
Below you can find all Security Advisories that related to your search term.
| Note | Component | Description | CVSS | Severity | Patchday | Initially released on | Category | Affected system type | Valid for |
|---|---|---|---|---|---|---|---|---|---|
| 3468102 | BC-FES-BUS-RUN | [CVE-2024-41732] Improper Access Control in SAP Netweaver Application Server ABAP | 4.7 | Medium | 2024-08 | 2024/08/13 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 912 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
| 3446076 | CA-UI5-SC | [CVE-2024-33007] Client-side script execution vulnerability in SAP UI5(PDFViewer) | 3.5 | Low | 2024-05 | 2024/05/14 | Program error | ABAP | SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
| 3406786 | CA-FLP-ABA | [CVE-2023-49584] Client-Side Desynchronization vulnerability in SAP Fiori Launchpad | 4.3 | Medium | 2023-12 | 2023/12/12 | Program error | SAP UI5 | SAP_BASIS 793 SAP_UI 750 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 UI_700 200 |
| 3396109 | BC-FES-BUS | [CVE-2024-22128] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Business Client for HTML | 4.7 | Medium | 2024-02 | 2024/02/13 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
| 3326210 | CA-UI5-CTR-BAL | [CVE-2023-30743] Improper Neutralization of Input in SAPUI5 | 7.1 | High | 2023-05 | 2023/05/09 | Program error | ABAP | SAP_UI 750 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 UI_700 200 |
| 3324285 | CA-UI5-COR | [CVE-2023-33991] Stored Cross-Site Scripting vulnerability in SAP UI5 (Variant Management) | 8.2 | High | 2023-06 | 2023/06/13 | Program error | SAP UI5 | SAP_UI 750 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 UI_700 200 |
| 3323163 | BC-WD-UR | [CVE-2023-40624] Code Injection vulnerability in SAP NetWeaver AS ABAP (applications based on Unified Rendering) | 5.5 | Medium | 2023-09 | 2023/09/12 | Program error | ABAP | SAP_BASIS 702 SAP_BASIS 731 SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 SAP_UI 758 |
| 3249990 | CA-UI5-VTK-VIT | [CVE-2021-20223] Multiple Vulnerabilities in SQlite bundled with SAPUI5 | 7.5 | High | 2022-11 | 2022/11/08 | Program error | ABAP, Java | SAP_UI 754 SAP_UI 755 SAP_UI 756 SAP_UI 757 UISAPUI5_STANDALONE 1000 UISAPUI5_STANDALONE 600 UISAPUI5_STANDALONE 700 UISAPUI5_STANDALONE 800 UISAPUI5_STANDALONE 900 |
| 3218159 | CA-FLP-FE-COR | Insufficient Session Expiration in Central Fiori Launchpad | 6.1 | Medium | 2022-11 | 2022/11/08 | Program error | SAP UI5 SAP Fiori | SAP_UI 754 SAP_UI 755 |
| 3163703 | CA-UI5-COR-FND | Multiple Vulnerabilities in URI.js bundled with SAPUI5 | 6.1 | Medium | 2022-04 | 2022/04/12 | Program error | ABAP | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 UI_700 200 |
| 3159329 | CA-UI5-COR-FND | Denial of service (DoS) vulnerability in JSZip library bundled within SAPUI5 | 5.3 | Medium | 2023-12 | 2023/12/12 | Program error | ABAP | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 UI_700 200 |
| 3149805 | CA-FLP-FE-COR | [CVE-2022-26101] Cross-Site Scripting (XSS) vulnerability in SAP Fiori launchpad | 8.1 | High | 2022-03 | 2022/03/08 | Program error | ABAP | SAP_BASIS 787 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
| 3149794 | CA-UI5-COR | Cross-Site Scripting (XSS) vulnerabilities in jQuery-UI library bundled with SAPUI5 | 6.1 | Medium | 2023-08 | 2023/08/08 | Program error | SAP UI5 | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 UI_700 200 |
| 3146336 | CA-UI2-THD | [CVE-2022-29610] Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP | 5.4 | Medium | 2022-05 | 2022/05/10 | Program error | ABAP | SAP_BASIS 787-788 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
| 3143161 | CA-UI5-FL-LRP | Missing Authorization check for UI5 flexibility key user functionality | 4.3 | Medium | 2022-05 | 2022/05/10 | Program error | ABAP | SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
| 3126557 | CA-GTF-VBZ | [CVE-2022-28770] Cross-Site Scripting (XSS) vulnerability in SAPUI5 (vbm library) | 6.1 | Medium | 2022-04 | 2022/04/12 | Program error | ABAP | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
| 3107196 | BC-WD-ABA | Cross-Site Request Forgery (CSRF) vulnerability in SAP NetWeaver AS ABAP within Web Dynpro ABAP | 4.3 | Medium | 2022-02 | 2022/01/25 | Program error | ABAP | SAP_BASIS 701-702 SAP_BASIS 731 SAP_BASIS 786-787 SAP_BASIS 804 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 SAP_UI 756 |
| 3051005 | CA-FLP-ABA | Cross-Site Scripting (XSS) Vulnerability in SAP Fiori Launchpad | 3.5 | Low | 2021-12 | 2021/12/14 | Program error | SAP UI5 | SAP_UI 750 SAP_UI 753 SAP_UI 754 SAP_UI 755 UI_700 200 |
| 3025604 | BC-WD-ABA | [CVE-2021-33664] Cross-Site Scripting (XSS) vulnerability within SAP NetWeaver AS ABAP (Applications based on Web Dynpro ABAP) | 5.4 | Medium | 2021-06 | 2021/06/08 | Program error | ABAP | SAP_BASIS 702 SAP_BASIS 731 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 |
| 2984627 | CA-FE-NEW | [CVE-2020-26815] Security Vulnerabilities in SAP Fiori Launchpad (NewsTile Application) | 8.6 | High | 2020-11 | 2020/11/10 | Program error | ABAP | SAP_BASIS 782 SAP_UI 750 SAP_UI 751 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 |
| 2974582 | BC-WD-ABA | [CVE-2021-21478] Reverse Tabnabbing vulnerability in SAP NetWeaver Application Server ABAP (Applications based on Web Dynpro ABAP) | 4.7 | Medium | 2021-02 | 2021/02/09 | Program error | ABAP | SAP_BASIS 700-702 SAP_BASIS 731 SAP_BASIS 804 SAP_UI 750 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 |
| 2941170 | CA-UI5-COR | Cross-Site Scripting (XSS) vulnerabilities in modified jQuery bundled with SAPUI5 | 6.1 | Medium | 2020-08 | 2020/08/11 | Program error | SAP GUI / Frontend | UISAPUI5_JAVA 7.50 SAP_UI 750 SAP_UI 751 SAP_UI 752 SAP_UI 753 SAP_UI 754 SAP_UI 755 UI_700 200 |