Security Advisory
CVE-2021-33666
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
When SAP Commerce Cloud version 100, hosts a JavaScript storefront, it is vulnerable to MIME sniffing, which, in certain circumstances, could be used to facilitate an XSS attack or malware proliferation.