CVE-2024-47594

CVSS V2 None CVSS V3 None
Description
SAP NetWeaver Enterprise Portal (KMC) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting vulnerability in KMC servlet. An attacker could craft a script and trick the user into clicking it. When a victim who is registered on the portal clicks on such link, confidentiality and integrity of their web browser session could be compromised.
Overview
  • CVE ID
  • CVE-2024-47594
  • Assigner
  • sap
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-10-08T03:21:40.168Z
  • Last Modified Date
  • 2024-10-08T03:21:40.168Z
History
Created Old Value New Value Data Type Notes
2024-10-08 13:22:49 Added to TrackCVE