SAP Diagnostics Agent 720

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:sap:diagnostics_agent:720:*:*:*:*:*:*:*

part: a version: 720 update: *

VendorSap (dd5aa0c0-20b0-5c86-a937-aa29f1a33b77)
ProductDiagnostics Agent (08303ed6-9381-5332-9545-665c708e1de7)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-27497 vulnerable 2026-06-03 14:51:02.039655 Multiple vulnerabilities in SAP Diagnostics Agent (EventLogServiceCollector)
CRITICAL (10)
Due to missing authentication and input sanitization of code the EventLogServiceCollector of SAP Diagnostics Agent - version 720, allows an attacker to execute malicious scripts on all connected Diagnostics Agents running on Windows. On successful exploitation, the attacker can completely compromise confidentiality, integrity and availability of the system.
Published: 2023-04-11T02:37:07.584Z
Updated: 2025-02-07T19:32:25.313Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-27267 vulnerable 2026-06-03 14:51:00.805111 Multiple vulnerabilities in SAP Diagnostics Agent (OSCommand Bridge)
CRITICAL (9)
Due to missing authentication and insufficient input validation, the OSCommand Bridge of SAP Diagnostics Agent - version 720, allows an attacker with deep knowledge of the system to execute scripts on all connected Diagnostics Agents. On successful exploitation, the attacker can completely compromise confidentiality, integrity and availability of the system.
Published: 2023-04-11T02:36:15.882Z
Updated: 2025-02-07T19:32:45.187Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.