Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSapCVELIST:CVE-2022-35226
HistoryOct 11, 2022 - 12:00 a.m.

CVE-2022-35226

2022-10-1100:00:00
CWE-79
sap
www.cve.org
sap data services
management console
cross-site scripting

0.001 Low

EPSS

Percentile

33.5%

JSON

SAP Data Services Management allows an attacker to copy the data from a request and echoed into the application’s immediate response, it will lead to a Cross-Site Scripting vulnerability. The attacker would have to log in to the management console to perform such as an attack, only few of the pages are vulnerable in the DS management console.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "SAP Data Services Management Console",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "4.2"
      },
      {
        "status": "affected",
        "version": "4.3"
      }
    ]
  }
]

Related

nvd 1
prion 1
cve 1
cnvd 1
nvd
nvd
CVE-2022-35226
2022-10-11 21:15:12
prion
prion
Cross site scripting
2022-10-11 21:15:00
cve
cve
CVE-2022-35226
2022-10-11 21:15:12
cnvd
cnvd
SAP Data Services Management Cross-Site Scripting Vulnerability
2022-10-13 00:00:00

0.001 Low

EPSS

Percentile

33.5%

JSON
Related for CVELIST:CVE-2022-35226
nvd1prion1cve1cnvd1