CVE-2018-2424

🗓️ 12 Jun 2018 15:00:00Reported by sapType

SAP UI5 input validation vulnerabilit

Reporter	Title	Published	Views	Family All 6
CNVD	SAP Hana DB, UI5 and UI Cross-Site Scripting Vulnerabilities	14 Jun 201800:00	–	cnvd
Cvelist	CVE-2018-2424	12 Jun 201815:00	–	cvelist
EUVD	EUVD-2018-14279	7 Oct 202500:30	–	euvd
NVD	CVE-2018-2424	12 Jun 201815:29	–	nvd
OSV	CVE-2018-2424	12 Jun 201815:29	–	osv
Prion	Design/Logic Flaw	12 Jun 201815:29	–	prion

NVD

Vulners

Node

sap hana_databaseMatch1.00

sap hana_databaseMatch2.00

sap uiMatch2.0netweaver_7.0

sap uiMatch7.40

sap uiMatch7.50

sap uiMatch7.51

sap uiMatch7.52

sap ui5Match1.00

sap ui5_javaMatch7.30

sap ui5_javaMatch7.31

sap ui5_javaMatch7.40

sap ui5_javaMatch7.50

[
  {
    "product": "SAP HANA Database",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "1.0"
      },
      {
        "status": "affected",
        "version": "2.0"
      }
    ]
  },
  {
    "product": "SAP UI5",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "1.0"
      }
    ]
  },
  {
    "product": "SAP UI5(Java)",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "7.3"
      },
      {
        "status": "affected",
        "version": "7.31"
      },
      {
        "status": "affected",
        "version": "7.40"
      },
      {
        "status": "affected",
        "version": "7.50"
      }
    ]
  },
  {
    "product": "SAP UI",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "7.40"
      },
      {
        "status": "affected",
        "version": "7.50"
      },
      {
        "status": "affected",
        "version": "7.51"
      },
      {
        "status": "affected",
        "version": "7.52"
      }
    ]
  },
  {
    "product": "SAP UI for SAP NetWeaver 7.00",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "2.0"
      }
    ]
  }
]

Source	Link
wiki	www.wiki.scn.sap.com/wiki/pages/viewpage.action
securityfocus	www.securityfocus.com/bid/104459
launchpad	www.launchpad.support.sap.com/

21 Nov 2024 04:03Current

7.5High risk

Vulners AI Score7.5

CVSS 25

CVSS 37.5 - 9.8

EPSS0.00292

CWE-20