CVE-2024-22128

CVSS V2 None CVSS V3 None
Description
SAP NWBC for HTML - versions SAP_UI 754, SAP_UI 755, SAP_UI 756, SAP_UI 757, SAP_UI 758, SAP_BASIS 700, SAP_BASIS 701, SAP_BASIS 702, SAP_BASIS 731, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. An unauthenticated attacker can inject malicious javascript to cause limited impact to confidentiality and integrity of the application data after successful exploitation.
Overview
  • CVE ID
  • CVE-2024-22128
  • Assigner
  • sap
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-02-13T02:02:14.281Z
  • Last Modified Date
  • 2024-06-04T17:52:30.808Z
History
Created Old Value New Value Data Type Notes
2024-06-26 09:31:31 Added to TrackCVE