exploitDog

GHSA-g7j8-x6g6-f5vj

Опубликовано: 09 сент. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to redirect users to a malicious site due to insufficient URL validation. As a result, it may have a slight impact on confidentiality and integrity.

SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to redirect users to a malicious site due to insufficient URL validation. As a result, it may have a slight impact on confidentiality and integrity.

Ссылки

EPSS

Процентиль: 27%

0.00097

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-601

Связанные уязвимости

CVE-2023-40306

CVSS3: 6.1

nvd

больше 2 лет назад

SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to redirect users to a malicious site due to insufficient URL validation. As a result, it may have a slight impact on confidentiality and integrity.

BDU:2023-05457

CVSS3: 6.1

fstec

больше 2 лет назад

Уязвимость компонентов Manage Catalog Items и Cross-Catalog Search программной платформы SAP S/4HANA, позволяющая нарушителю перенаправить пользователя на произвольный URL-адрес

EPSS

Процентиль: 27%

0.00097

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-601