Описание
SAP Companion - version <3.1.38, has a URL with parameter that could be vulnerable to XSS attack. The attacker could send a malicious link to a user that would possibly allow an attacker to retrieve the sensitive information and cause minor impact on the integrity of the web application.
Ссылки
- Permissions Required
- Vendor Advisory
- Permissions Required
- Vendor Advisory
Уязвимые конфигурации
EPSS
5.4 Medium
CVSS3
7.6 High
CVSS3
Дефекты
Связанные уязвимости
SAP Companion - version <3.1.38, has a URL with parameter that could be vulnerable to XSS attack. The attacker could send a malicious link to a user that would possibly allow an attacker to retrieve the sensitive information and cause minor impact on the integrity of the web application.
Уязвимость компонента URL Handler программного обеспечения интерактивного обучения пользователей SAP-систем SAP Companion, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)
EPSS
5.4 Medium
CVSS3
7.6 High
CVSS3