Browse all 778 CVE security advisories affecting SAP SE. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SAP SE develops enterprise resource planning software that manages business processes for large organizations globally. With 778 recorded CVEs, its attack surface reflects the complexity of its extensive codebase. Historically, vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation, often stemming from improper input validation or insecure default configurations. These flaws allow attackers to bypass authentication, access sensitive data, or execute arbitrary commands on affected systems. Notable incidents include critical flaws in SAP NetWeaver and SAP HANA, which have been actively exploited in the wild. The company maintains a rigorous security response program, issuing regular patches for identified weaknesses. However, the sheer volume of integrations and legacy components continues to present challenges for comprehensive vulnerability management. Organizations deploying SAP solutions must prioritize timely patching and strict access controls to mitigate these persistent risks effectively.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-6270 | SAP Netweaver AS ABAP 安全漏洞 — SAP NetWeaver AS ABAP (Banking Services) | 6.5 | - | 2020-06-10 |
| CVE-2020-6268 | SAP ERP 安全漏洞 — SAP ERP (Statutory Reporting for Insurance Companies) | 5.4 | - | 2020-06-10 |
| CVE-2020-6246 | SAP NetWeaver AS ABAP Business Server 跨站脚本漏洞 — SAP NetWeaver AS ABAP (Business Server Pages Test Application SBSPEXT_TABLE) | 6.1 | - | 2020-06-10 |
| CVE-2020-6239 | SAP Business One 信息泄露漏洞 — SAP Business One (Backup service) | 4.4 | - | 2020-06-10 |
| CVE-2020-6265 | SAP Commerce 信任管理问题漏洞 — SAP CommerceCWE-798 | 9.8 | - | 2020-06-09 |
| CVE-2020-6242 | SAP Business Objects Business Intelligence Platform 访问控制错误漏洞 — SAP Business Objects Business Intelligence Platform (Live Data Connect) | 9.1 | - | 2020-05-12 |
| CVE-2020-6258 | SAP Identity Management 安全漏洞 — SAP Identity Management | 4.3 | - | 2020-05-12 |
| CVE-2020-6254 | SAP Enterprise Threat Detection 跨站脚本漏洞 — SAP Enterprise Threat Detection | 6.1 | - | 2020-05-12 |
| CVE-2020-6241 | SAP Adaptive Server Enterprise SQL注入漏洞 — SAP Adaptive Server Enterprise | 8.8 | - | 2020-05-12 |
| CVE-2020-6259 | SAP Adaptive Server Enterprise 安全漏洞 — SAP Adaptive Server Enterprise | 7.5 | - | 2020-05-12 |
| CVE-2020-6252 | SAP Adaptive Server Enterprise 信息泄露漏洞 — SAP Adaptive Server Enterprise (Cockpit) | 7.8 | - | 2020-05-12 |
| CVE-2020-6253 | SAP Adaptive Server Enterprise SQL注入漏洞 — SAP Adaptive Server Enterprise (Web Services) | 8.8 | - | 2020-05-12 |
| CVE-2020-6244 | SAP Business Client 代码问题漏洞 — SAP Business ClientCWE-427 | 7.8 | - | 2020-05-12 |
| CVE-2020-6257 | SAP Business Objects Business Intelligence Platform 跨站脚本漏洞 — SAP Business Objects Business Intelligence Platform (CMC and BI launchpad) | 5.4 | - | 2020-05-12 |
| CVE-2020-6250 | SAP Adaptive Server Enterprise 信息泄露漏洞 — SAP Adaptive Server Enterprise | 6.8 | - | 2020-05-12 |
| CVE-2020-6262 | 思爱普 SAP AS ABAP 注入漏洞 — SAP Application Server ABAP (ST-PI) | 7.2 | - | 2020-05-12 |
| CVE-2020-6256 | SAP Master Data Governance 安全漏洞 — SAP Master Data Governance | 4.3 | - | 2020-05-12 |
| CVE-2020-6248 | SAP Adaptive Server Enterprise 输入验证错误漏洞 — SAP Adaptive Server Enterprise (Backup Server) | 8.8 | - | 2020-05-12 |
| CVE-2020-6251 | SAP Business Objects Business Intelligence Platform 信息泄露漏洞 — SAP BusinessObjects Business Intelligence Platform | 6.5 | - | 2020-05-12 |
| CVE-2020-6247 | SAP Business Objects Business Intelligence Platform 输入验证错误漏洞 — SAP Business Objects Business Intelligence Platform | 7.5 | - | 2020-05-12 |
| CVE-2020-6245 | SAP Business Objects Business Intelligence Platform 注入漏洞 — SAP Business Objects Business Intelligence PlatformCWE-99 | 7.8 | - | 2020-05-12 |
| CVE-2020-6249 | SAP Master Data Governance SQL注入漏洞 — SAP Master Data Governance (S4CORE) | 8.8 | - | 2020-05-12 |
| CVE-2020-6243 | SAP Adaptive Server Enterprise 注入漏洞 — SAP Adaptive Server Enterprise (XP Server on Windows Platform) | 8.8 | - | 2020-05-12 |
| CVE-2020-6240 | 思爱普 SAP NetWeaver AS ABAP Business Server 输入验证错误漏洞 — SAP NetWeaver AS ABAP (Web Dynpro ABAP) (SAP_UI) | 7.5 | - | 2020-05-12 |
| CVE-2020-6212 | SAP ERP和S/4 HANA 安全漏洞 — SAP ERP | 5.4 | - | 2020-04-24 |
| CVE-2020-6213 | SAP NetWeaver AS ABAP Business Server 跨站脚本漏洞 — SAP NetWeaver AS ABAP (Business Server Pages Test Application SBSPEXT_PHTMLB) | 6.1 | - | 2020-04-24 |
| CVE-2020-6211 | SAP Business Objects Business Intelligence Platform 输入验证错误漏洞 — SAP Business Objects Business Intelligence Platform | 6.1 | - | 2020-04-14 |
| CVE-2020-6217 | SAP NetWeaver AS ABAP Business Server 跨站脚本漏洞 — SAP NetWeaver AS ABAP (Business Server Pages Test Application IT05) | 6.1 | - | 2020-04-14 |
| CVE-2020-6225 | SAP Netweaver 路径遍历漏洞 — SAP NetWeaver (Knowledge Management) (KMC-CM) | 8.8 | - | 2020-04-14 |
| CVE-2020-6195 | SAP Business Objects Business Intelligence Platform 安全漏洞 — SAP Business Objects Business Intelligence Platform | 9.8 | - | 2020-04-14 |
This page lists every published CVE security advisory associated with SAP SE. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.