CVE-2024-37174

CVSS V2 None CVSS V3 None
Description
Custom CSS support option in SAP CRM WebClient UI does not sufficiently encode user-controlled inputs resulting in Cross-Site Scripting vulnerability. On successful exploitation an attacker can cause limited impact on confidentiality and integrity of the application.
Overview
  • CVE ID
  • CVE-2024-37174
  • Assigner
  • sap
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-07-09T04:01:21.084Z
  • Last Modified Date
  • 2024-07-09T04:01:21.084Z
History
Created Old Value New Value Data Type Notes
2024-07-09 13:06:43 Added to TrackCVE