SAP Solution Manager Cross-Site Scripting Vulnerability (CNVD-2023-40171)

SAP Solution Manager is a set of system monitoring, SAP support desktop, self-service, ASAP implementation and other functions of the German SAP company as one of the system management platform. The platform can help customers establish SAP solution lifecycle management, and provide system monitoring, remote support services and SAP product component upgrades and other functions. A cross-site scripting vulnerability exists in SAP Solution Manager version 720, which originates from a cross-site scripting vulnerability that allows an authenticated attacker to craft a malicious link that, when clicked on by an unsuspecting user, can be used to read or modify certain sensitive information or craft a payload resource that may restrict access to a desired access. No detailed vulnerability details are currently available.