Описание
The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
Ссылки
- Third Party AdvisoryVDB Entry
- Issue TrackingVendor Advisory
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- Issue TrackingVendor Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sap:customer_relationship_management:700:*:*:*:*:*:*:*
cpe:2.3:a:sap:customer_relationship_management:701:*:*:*:*:*:*:*
cpe:2.3:a:sap:customer_relationship_management:702:*:*:*:*:*:*:*
cpe:2.3:a:sap:customer_relationship_management:730:*:*:*:*:*:*:*
cpe:2.3:a:sap:customer_relationship_management:731:*:*:*:*:*:*:*
cpe:2.3:a:sap:customer_relationship_management:732:*:*:*:*:*:*:*
cpe:2.3:a:sap:customer_relationship_management:733:*:*:*:*:*:*:*
cpe:2.3:a:sap:customer_relationship_management:754:*:*:*:*:*:*:*
EPSS
Процентиль: 55%
0.00326
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
больше 3 лет назад
The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
EPSS
Процентиль: 55%
0.00326
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79