Security Advisory

CVE-2022-41260

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-11-08 00:00:00

Last updated 2025-04-30 17:57:00

Assigner sap

State PUBLISHED

Description

SAP Financial Consolidation - version 1010, does not sufficiently encode user-controlled input which may allow an unauthenticated attacker to inject a web script via a GET request. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality and integrity of the application.

← Browse all CVEs View on cve.org ↗