CVE-2024-34687 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application server for ABAP and ABAP Platform

🗓️ 14 May 2024 03:56:24Reported by sapType

SAP NetWeaver XSS Vulnerability

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2024-34687	23 Oct 202520:44	–	circl
CNNVD	SAP NetWeaver Application Server 跨站脚本漏洞	14 May 202400:00	–	cnnvd
CVE	CVE-2024-34687	14 May 202403:56	–	cve
EUVD	EUVD-2024-34986	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP products	17 May 202411:28	–	ncsc
NVD	CVE-2024-34687	14 May 202416:17	–	nvd
OSV	CVE-2024-34687	14 May 202416:17	–	osv
Positive Technologies	PT-2024-26107 · Sap · Sap Netweaver Application Server For Abap/Abap Platform	14 May 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-34687	23 May 202509:47	–	redhatcve
Tenable Nessus	SAP NetWeaver AS ABAP XSS (May 2024) (3448445)	17 May 202400:00	–	nessus

[
  {
    "defaultStatus": "unaffected",
    "product": "SAP NetWeaver Application server for ABAP and ABAP Platform",
    "vendor": "SAP_SE",
    "versions": [
      {
        "status": "affected",
        "version": "SAP_BASIS 700"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 701"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 702"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 731"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 740"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 750"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 751"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 752"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 753"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 754"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 755"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 756"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 757"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 758"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 795"
      },
      {
        "status": "affected",
        "version": "SAP_BASIS 796"
      }
    ]
  }
]

Source	Link
support	www.support.sap.com/en/my-support/knowledge-base/security-notes-news.html
me	www.me.sap.com/notes/3448445

14 May 2024 03:56Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.16.5

EPSS0.00402

CWE-79