CVE-2024-33007

🗓️ 14 May 2024 03:44:05Reported by sapType

SAPUI5 PDFViewer executes embedded JavaScript from PDF content

Reporter	Title	Published	Views	Family All 9
CNNVD	SAP PDFViewer 安全漏洞	14 May 202400:00	–	cnnvd
CNVD	Unspecified Vulnerability in SAP PDFViewer (CNVD-2024-27892)	14 Jun 202400:00	–	cnvd
Cvelist	CVE-2024-33007 Client-side script execution vulnerability in SAP UI5(PDFViewer)	14 May 202403:44	–	cvelist
EUVD	EUVD-2024-30752	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP products	17 May 202411:28	–	ncsc
NVD	CVE-2024-33007	14 May 202416:17	–	nvd
Positive Technologies	PT-2024-25052 · Sap · Sapui5	14 May 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-33007	23 May 202508:43	–	redhatcve
Vulnrichment	CVE-2024-33007 Client-side script execution vulnerability in SAP UI5(PDFViewer)	14 May 202403:44	–	vulnrichment

Vulners

Vulnrichment

Node

sap sapui5Match754

sap sapui5Match755

sap sapui5Match756

sap sapui5Match757

sap sapui5Match758

[
  {
    "defaultStatus": "unaffected",
    "product": "SAPUI5 (PDFViewer)",
    "vendor": "SAP_SE",
    "versions": [
      {
        "status": "affected",
        "version": "754"
      },
      {
        "status": "affected",
        "version": "755"
      },
      {
        "status": "affected",
        "version": "756"
      },
      {
        "status": "affected",
        "version": "757"
      },
      {
        "status": "affected",
        "version": "758"
      }
    ]
  }
]

Source	Link
support	www.support.sap.com/en/my-support/knowledge-base/security-notes-news.html
me	www.me.sap.com/notes/3446076

17 Jun 2026 07:30Current

7High risk

Vulners AI Score7

CVSS 3.13.5

EPSS0.00341

SSVC

CWE-79