SAP Business Client
By the Year
In 2024 there have been 0 vulnerabilities in SAP Business Client . Business Client did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 1 | 6.50 |
| 2020 | 2 | 7.65 |
| 2019 | 0 | 0.00 |
| 2018 | 1 | 7.50 |
It may take a day or so for new Business Client vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent SAP Business Client Security Vulnerabilities
When an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will
CVE-2021-38150
6.5 - Medium
- September 14, 2021
When an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will allow him to read extremely sensitive data, such as credentials. This would allow the attacker to compromise the corresponding backend for which the credentials are valid.
Cleartext Storage of Sensitive Information
SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories
CVE-2020-6244
7.8 - High
- May 12, 2020
SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories that can be executed by the application, due to uncontrolled search path element. An attacker could thereby control the behavior of the application.
DLL preloading
SAP Business Client, versions 6.5, 7.0, does not perform necessary integrity checks
CVE-2020-6228
7.5 - High
- April 14, 2020
SAP Business Client, versions 6.5, 7.0, does not perform necessary integrity checks which could be exploited by an attacker under certain conditions to modify the installer.
Improper Validation of Integrity Check Value
Under certain conditions SAP Business Client 6.5
CVE-2018-2398
7.5 - High
- March 14, 2018
Under certain conditions SAP Business Client 6.5 allows an attacker to access information which would otherwise be restricted.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for SAP Business Client or by SAP? Click the Watch button to subscribe.
