Browse all 778 CVE security advisories affecting SAP SE. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SAP SE develops enterprise resource planning software that manages business processes for large organizations globally. With 778 recorded CVEs, its attack surface reflects the complexity of its extensive codebase. Historically, vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation, often stemming from improper input validation or insecure default configurations. These flaws allow attackers to bypass authentication, access sensitive data, or execute arbitrary commands on affected systems. Notable incidents include critical flaws in SAP NetWeaver and SAP HANA, which have been actively exploited in the wild. The company maintains a rigorous security response program, issuing regular patches for identified weaknesses. However, the sheer volume of integrations and legacy components continues to present challenges for comprehensive vulnerability management. Organizations deploying SAP solutions must prioritize timely patching and strict access controls to mitigate these persistent risks effectively.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-6317 | SAP Adaptive Server Enterprise 信息泄露漏洞 — SAP Adaptive Server Enterprise | 3.5 | - | 2020-11-30 |
| CVE-2020-26825 | SAP Fiori 跨站脚本漏洞 — SAP Fiori Launchpad (News Tile Application) | 6.1 | - | 2020-11-13 |
| CVE-2020-26807 | SAP ERP 安全漏洞 — SAP ERP Client for E-Bilanz 1.0 | 6.5 | - | 2020-11-10 |
| CVE-2020-26810 | SAP Commerce Cloud 安全漏洞 — SAP Commerce Cloud (Accelerator Payment Mock) | 7.5 | - | 2020-11-10 |
| CVE-2020-26823 | sap solution manager (java stack) 安全漏洞 — SAP Solution Manager (JAVA stack) | 10.0 | - | 2020-11-10 |
| CVE-2020-26821 | sap solution manager (java stack) 安全漏洞 — SAP Solution Manager (JAVA stack) | 10.0 | - | 2020-11-10 |
| CVE-2020-26818 | SAP NetWeaver AS 信息泄露漏洞 — SAP NetWeaver AS ABAP (Web Dynpro) | 6.5 | - | 2020-11-10 |
| CVE-2020-26824 | sap solution manager (java stack) 安全漏洞 — SAP Solution Manager (JAVA stack) | 10.0 | - | 2020-11-10 |
| CVE-2020-26817 | SAP 3D Visual Enterprise Viewer 缓冲区错误漏洞 — SAP 3D Visual Enterprise Viewer | 4.3 | - | 2020-11-10 |
| CVE-2020-26822 | sap solution manager (java stack) 安全漏洞 — SAP Solution Manager (JAVA stack) | 10.0 | - | 2020-11-10 |
| CVE-2020-26814 | SAP Process Integration 安全漏洞 — SAP Process Integration (PGP - Module Business-to-Business Add On) | 4.9 | - | 2020-11-10 |
| CVE-2020-26820 | SAP NetWeaver AS JAVA 代码问题漏洞 — SAP NetWeaver AS JAVA | 7.2 | - | 2020-11-10 |
| CVE-2020-26819 | SAP Netweaver 授权问题漏洞 — SAP NetWeaver AS ABAP (Web Dynpro) | 9.9 | - | 2020-11-10 |
| CVE-2020-26815 | SAP Fiori 代码问题漏洞 — SAP Fiori Launchpad (News Tile Application) | 10.0 | - | 2020-11-10 |
| CVE-2020-26808 | SAP S4 HANA和SAP AS ABAP 代码注入漏洞 — SAP AS ABAP(DMIS) | 8.8 | - | 2020-11-10 |
| CVE-2020-26811 | SAP Commerce Cloud 代码问题漏洞 — SAP Commerce Cloud (Accelerator Payment Mock) | 5.3 | - | 2020-11-10 |
| CVE-2020-6316 | SAP ERP和SAP S/4 HANA 授权问题漏洞 — SAP ERP | 4.3 | - | 2020-11-10 |
| CVE-2020-26809 | SAP Commerce Cloud 授权问题漏洞 — SAP Commerce Cloud | 5.3 | - | 2020-11-10 |
| CVE-2020-6370 | SAP 跨站脚本漏洞 — SAP NetWeaver (DI Design Time Repository) | 6.1 | - | 2020-10-20 |
| CVE-2020-6367 | SAP NetWeaver Composite Application Framework 跨站脚本漏洞 — SAP NetWeaver Composite Application Framework | 6.1 | - | 2020-10-20 |
| CVE-2020-6362 | SAP 安全漏洞 — SAP Banking Services | 8.1 | - | 2020-10-20 |
| CVE-2020-6308 | SAP 多款产品代码问题漏洞 — SAP BusinessObjects Business Intelligence Platform (Web Services) | 8.2 | - | 2020-10-20 |
| CVE-2020-6369 | SAP Solution Manager和SAP Focused Run 安全漏洞 — CA Introscope Enterprise Manager (Affected products: SAP Solution Manager and SAP Focused Run) | 7.5 | - | 2020-10-20 |
| CVE-2020-6366 | SAP 输入验证错误漏洞 — SAP NetWeaver (Compare Systems) | 6.5 | - | 2020-10-20 |
| CVE-2020-6315 | SAP BusinessObjects Business Intelligence Platform 安全漏洞 — SAP 3D Visual Enterprise Viewer | 5.5 | - | 2020-10-20 |
| CVE-2020-6365 | SAP NetWeaver Application Server Java 输入验证错误漏洞 — SAP NetWeaver Application Server Java | 6.1 | - | 2020-10-15 |
| CVE-2020-6376 | SAP 3D Visual Enterprise Viewer 输入验证错误漏洞 — SAP 3D Visual Enterprise Viewer | 5.5 | - | 2020-10-15 |
| CVE-2020-6374 | SAP 3D Visual Enterprise Viewer 缓冲区错误漏洞 — SAP 3D Visual Enterprise Viewer | 7.1 | - | 2020-10-15 |
| CVE-2020-6375 | SAP 3D Visual Enterprise Viewer 输入验证错误漏洞 — SAP 3D Visual Enterprise Viewer | 5.5 | - | 2020-10-15 |
| CVE-2020-6373 | SAP 3D Visual Enterprise Viewer 缓冲区错误漏洞 — SAP 3D Visual Enterprise Viewer | 4.3 | - | 2020-10-15 |
This page lists every published CVE security advisory associated with SAP SE. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.