CVE-2023-0013 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform

🗓️ 10 Jan 2023 02:50:52Reported by sapType

CVE-2023-0013 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS for ABAP and ABAP Platform. Documentation lacks input encoding causing XSS

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2023-0013	10 Jan 202307:28	–	circl
CNNVD	SAP NetWeaver Application Server 跨站脚本漏洞	10 Jan 202300:00	–	cnnvd
CNVD	SAP NetWeaver Application Server Cross-Site Scripting Vulnerability (CNVD-2023-04301)	12 Jan 202300:00	–	cnvd
CVE	CVE-2023-0013	10 Jan 202302:50	–	cve
EUVD	EUVD-2023-12118	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP products	14 Feb 202300:00	–	ncsc
NVD	CVE-2023-0013	10 Jan 202303:15	–	nvd
Prion	Cross site scripting	10 Jan 202303:15	–	prion
Positive Technologies	PT-2023-15948 · Sap · Sap Netweaver Application Server Abap	10 Jan 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-0013	23 May 202505:41	–	redhatcve

[
  {
    "defaultStatus": "unaffected",
    "product": "NetWeaver AS for ABAP and ABAP Platform",
    "vendor": "SAP",
    "versions": [
      {
        "status": "affected",
        "version": "702"
      },
      {
        "status": "affected",
        "version": "731"
      },
      {
        "status": "affected",
        "version": "740"
      },
      {
        "status": "affected",
        "version": "750"
      },
      {
        "status": "affected",
        "version": "751"
      },
      {
        "status": "affected",
        "version": "752"
      },
      {
        "status": "affected",
        "version": "753"
      },
      {
        "status": "affected",
        "version": "754"
      },
      {
        "status": "affected",
        "version": "755"
      },
      {
        "status": "affected",
        "version": "756"
      },
      {
        "status": "affected",
        "version": "757"
      }
    ]
  }
]

Source	Link
launchpad	www.launchpad.support.sap.com/
sap	www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

10 Jan 2023 02:50Current

6.2Medium risk

Vulners AI Score6.2

CVSS 3.16.1

EPSS0.00432

CWE-79