Browse all 778 CVE security advisories affecting SAP SE. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SAP SE develops enterprise resource planning software that manages business processes for large organizations globally. With 778 recorded CVEs, its attack surface reflects the complexity of its extensive codebase. Historically, vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation, often stemming from improper input validation or insecure default configurations. These flaws allow attackers to bypass authentication, access sensitive data, or execute arbitrary commands on affected systems. Notable incidents include critical flaws in SAP NetWeaver and SAP HANA, which have been actively exploited in the wild. The company maintains a rigorous security response program, issuing regular patches for identified weaknesses. However, the sheer volume of integrations and legacy components continues to present challenges for comprehensive vulnerability management. Organizations deploying SAP solutions must prioritize timely patching and strict access controls to mitigate these persistent risks effectively.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2021-27642 | SAP 3D Visual Enterprise Viewer 输入验证错误漏洞 — SAP 3D Visual Enterprise Viewer | 4.3 | - | 2021-06-09 |
| CVE-2021-27640 | SAP 3D Visual Enterprise Viewer 输入验证错误漏洞 — SAP 3D Visual Enterprise Viewer | 4.3 | - | 2021-06-09 |
| CVE-2021-27643 | SAP 3D Visual Enterprise Viewer 输入验证错误漏洞 — SAP 3D Visual Enterprise Viewer | 8.8 | - | 2021-06-09 |
| CVE-2021-27641 | SAP 3D Visual Enterprise Viewer 输入验证错误漏洞 — SAP 3D Visual Enterprise Viewer | 4.3 | - | 2021-06-09 |
| CVE-2021-27638 | SAP 3D Visual Enterprise Viewer 输入验证错误漏洞 — SAP 3D Visual Enterprise Viewer | 4.3 | - | 2021-06-09 |
| CVE-2021-27635 | SAP Netweaver 代码问题漏洞 — SAP NetWeaver AS for JAVA | 6.5 | - | 2021-06-09 |
| CVE-2021-27639 | SAP 3D Visual Enterprise Viewer 输入验证错误漏洞 — SAP 3D Visual Enterprise Viewer | 4.3 | - | 2021-06-09 |
| CVE-2021-27637 | SAP Workforce Performance 信息泄露漏洞 — SAP Enable Now (SAP Workforce Performance Builder - Manager) | 6.2 | - | 2021-06-09 |
| CVE-2021-27621 | SAP Netweaver 信息泄露漏洞 — SAP NetWeaver AS for Java (UserAdmin) | 4.9 | - | 2021-06-09 |
| CVE-2021-27615 | SAP Manufacturing Execution 跨站脚本漏洞 — SAP Manufacturing Execution | 4.8 | - | 2021-06-09 |
| CVE-2021-21473 | SAP NetWeaver AS ABAP Business Server 跨站脚本漏洞 — SAP NetWeaver AS ABAP and ABAP Platform (SRM_RFC_SUBMIT_REPORT) | 7.6 | - | 2021-06-09 |
| CVE-2021-21490 | SAP NetWeaver AS ABAP Business Server 跨站脚本漏洞 — SAP NetWeaver AS for ABAP (Web Survey) | 6.1 | - | 2021-06-09 |
| CVE-2021-33668 | Parvan Dobrev scimono 注入漏洞 — SAP InfraBox | 7.5 | - | 2021-06-09 |
| CVE-2021-27630 | SAP Netweaver 代码问题漏洞 — SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server)CWE-476 | 7.5 | - | 2021-06-09 |
| CVE-2021-27631 | SAP Netweaver和SAP NetWeaver AS ABAP Business Server 代码问题漏洞 — SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server)CWE-476 | 7.5 | - | 2021-06-09 |
| CVE-2021-27632 | SAP Netweaver 代码问题漏洞 — SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server)CWE-476 | 7.5 | - | 2021-06-09 |
| CVE-2021-27633 | SAP Netweaver 缓冲区错误漏洞 — SAP NetWeaver AS for ABAP (RFC Gateway)CWE-787 | 7.5 | - | 2021-06-09 |
| CVE-2021-27634 | SAP Netweaver 缓冲区错误漏洞 — SAP NetWeaver AS for ABAP (RFC Gateway)CWE-787 | 7.5 | - | 2021-06-09 |
| CVE-2021-27622 | SAP Internet Graphics Service 缓冲区错误漏洞 — SAP Internet Graphics ServiceCWE-787 | 5.9 | - | 2021-06-09 |
| CVE-2021-27597 | SAP NetWeaver AS ABAP Business Server 缓冲区错误漏洞 — SAP NetWeaver AS for ABAP (RFC Gateway)CWE-125 | 7.5 | - | 2021-06-09 |
| CVE-2021-27629 | SAP Netweaver 缓冲区错误漏洞 — SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server)CWE-125 | 7.5 | - | 2021-06-09 |
| CVE-2021-27607 | SAP NetWeaver AS ABAP Business Server 代码问题漏洞 — SAP NetWeaver ABAP Server and ABAP Platform (Dispatcher)CWE-476 | 7.5 | - | 2021-06-09 |
| CVE-2021-27606 | SAP NetWeaver AS ABAP Business Server 缓冲区错误漏洞 — SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server)CWE-125 | 7.5 | - | 2021-06-09 |
| CVE-2021-27620 | SAP Internet Graphics Server 缓冲区错误漏洞 — SAP Internet Graphics ServiceCWE-787 | 5.9 | - | 2021-06-09 |
| CVE-2021-27626 | SAP Internet Graphics Server 缓冲区错误漏洞 — SAP Internet Graphics ServiceCWE-787 | 5.9 | - | 2021-06-09 |
| CVE-2021-27628 | SAP Netweaver 缓冲区错误漏洞 — SAP NetWeaver ABAP Server and ABAP Platform (Dispatcher)CWE-787 | 7.5 | - | 2021-06-09 |
| CVE-2021-27627 | SAP Internet Graphics Server 缓冲区错误漏洞 — SAP Internet Graphics ServiceCWE-787 | 5.9 | - | 2021-06-09 |
| CVE-2021-27623 | SAP Internet Graphics Server 缓冲区错误漏洞 — SAP Internet Graphics ServiceCWE-787 | 5.9 | - | 2021-06-09 |
| CVE-2021-27624 | SAP Internet Graphics Server 缓冲区错误漏洞 — SAP Internet Graphics ServiceCWE-787 | 5.9 | - | 2021-06-09 |
| CVE-2021-27625 | SAP Internet Graphics Server 缓冲区错误漏洞 — SAP Internet Graphics ServiceCWE-787 | 5.9 | - | 2021-06-09 |
This page lists every published CVE security advisory associated with SAP SE. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.