Security Advisory

CVE-2023-33985

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-06-13 02:45:00

Last updated 2025-01-03 02:03:37

Assigner sap

State PUBLISHED

Description

SAP NetWeaver Enterprise Portal - version 7.50, does not sufficiently encode user-controlled inputs over the network, resulting in reflected Cross-Site Scripting (XSS) vulnerability, therefore changing the scope of the attack. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality and integrity of the application.

← Browse all CVEs View on cve.org ↗