CVE-2024-34687

CVSS V2 None CVSS V3 None
Description
SAP NetWeaver Application Server for ABAP and ABAP Platform do not sufficiently encode user controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. An attacker can control code that is executed within a user’s browser, which could result in modification, deletion of data, including accessing or deleting files, or stealing session cookies which an attacker could use to hijack a user’s session. Hence, this could have impact on Confidentiality, Integrity and Availability of the system.
Overview
  • CVE ID
  • CVE-2024-34687
  • Assigner
  • sap
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-05-14T03:56:24.324Z
  • Last Modified Date
  • 2024-06-04T17:41:49.331Z
History
Created Old Value New Value Data Type Notes
2024-06-26 14:29:23 Added to TrackCVE