Описание
SAP Marketing (Contacts App) - version 160, allows an attacker with low privileges to trick a user to open malicious page which could lead to a very convincing phishing attack with low impact on confidentiality and integrity of the application.
Ссылки
- Permissions Required
- Vendor Advisory
- Permissions Required
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:sap:marketing:160:*:*:*:*:*:*:*
EPSS
Процентиль: 36%
0.00154
Низкий
3.7 Low
CVSS3
5.4 Medium
CVSS3
Дефекты
CWE-601
Связанные уязвимости
CVSS3: 3.7
github
около 2 лет назад
SAP Marketing (Contacts App) - version 160, allows an attacker with low privileges to trick a user to open malicious page which could lead to a very convincing phishing attack with low impact on confidentiality and integrity of the application.
CVSS3: 5.4
fstec
около 2 лет назад
Уязвимость компонента Contacts App CRM-системы SAP Marketing, позволяющая нарушителю провести фишинговую атаку
EPSS
Процентиль: 36%
0.00154
Низкий
3.7 Low
CVSS3
5.4 Medium
CVSS3
Дефекты
CWE-601