Vulnerabilities (CVE)

Filtered by vendor Sap Subscribe

Filtered by product Cloud Connector

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-33695	1 Sap	1 Cloud Connector	2021-09-28	6.4 MEDIUM	9.1 CRITICAL
Potentially, SAP Cloud Connector, version - 2.0 communication with the backend is accepted without sufficient validation of the certificate.
CVE-2019-0246	1 Sap	1 Cloud Connector	2020-08-24	7.5 HIGH	9.8 CRITICAL
SAP Cloud Connector, before version 2.11.3, does not perform any authentication checks for functionalities that require user identity.
CVE-2019-0247	1 Sap	1 Cloud Connector	2019-01-17	7.5 HIGH	9.8 CRITICAL
SAP Cloud Connector, before version 2.11.3, allows an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.