Lucene search
China National Vulnerability DatabaseCNVD-2023-40170HistoryMar 01, 2023 - 12:00 a.m.
SAP NetWeaver AS Cross-Site Scripting Vulnerability (CNVD-2023-40170)
2023-03-0100:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
sap
netweaver
cross-site scripting
vulnerability
abap platform
url
attack
0.001 Low
EPSS
Percentile
32.4%
SAP NetWeaver AS is a SAP network application server from SAP. It not only provides network services, but also the basic platform for SAP software. A cross-site scripting vulnerability exists in SAP NetWeaver AS for ABAP and ABAP Platform versions 740, 750, 751, 752, 753, 754, 755, 756, 757, 789, and 790. An attacker could exploit this vulnerability to obtain sensitive information via a specially crafted URL.
Related
cve
cve
CVE-2023-23859
2023-02-14 04:15:12
prion
prion
Information disclosure
2023-02-14 04:15:00
nvd
nvd
CVE-2023-23859
2023-02-14 04:15:12
cvelist
cvelist
CVE-2023-23859
2023-02-14 03:15:54
nessus
nessus
SAP NetWeaver AS ABAP Multiple Vulnerabilities (3268959)
2023-09-15 00:00:00
SAP NetWeaver AS ABAP Multiple Vulnerabilities (Feb 2023)
2023-02-15 00:00:00