Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Sap Subscribe
Filtered by product Simple Diagnostics Agent
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-24396 1 Sap 1 Simple Diagnostics Agent 2022-06-21 7.2 HIGH 7.8 HIGH
The Simple Diagnostics Agent - versions 1.0 up to version 1.57, does not perform any authentication checks for functionalities that can be accessed via localhost on http port 3005. Due to lack of authentication checks, an attacker could access administrative or other privileged functionalities and read, modify, or delete sensitive information and configurations.
CVE-2022-22547 1 Sap 1 Simple Diagnostics Agent 2022-06-21 5.0 MEDIUM 7.5 HIGH
Simple Diagnostics Agent - versions 1.0 (up to version 1.57.), allows an attacker to access information which would otherwise be restricted via a random port 9000-65535. This allows information gathering which could be used exploit future open-source security exploits.