Security Advisory

CVE-2021-33674

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-14 11:24:33

Last updated 2024-08-03 23:58:22

Assigner sap

State PUBLISHED

Description

Under certain conditions, SAP Contact Center - version 700, does not sufficiently encode user-controlled inputs. This allows an attacker to exploit a Reflected Cross-Site Scripting (XSS) vulnerability when creating a new email and to execute arbitrary code on the victims browser.

← Browse all CVEs View on cve.org ↗