CVE-2024-21738

CVSS V2 None CVSS V3 None
Description
SAP NetWeaver ABAP Application Server and ABAP Platform do not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. An attacker with low privileges can cause limited impact to confidentiality of the application data after successful exploitation.
Overview
  • CVE ID
  • CVE-2024-21738
  • Assigner
  • sap
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-01-09T01:19:29.437Z
  • Last Modified Date
  • 2024-01-09T01:19:29.437Z
History
Created Old Value New Value Data Type Notes
2024-06-26 15:16:11 Added to TrackCVE