EUVD-2023-32789

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

SAP CRM WebClient UI has an XSS vulnerability allowing user access to sensitive information modifications.

Reporter	Title	Published	Views	Family All 9
BDU FSTEC	The vulnerability of the user interface of the SAP CRM WebClient UI, which allows an attacker to perform XSS attacks.	31 May 202300:00	–	bdu_fstec
CNNVD	SAP CRM 跨站脚本漏洞	9 May 202300:00	–	cnnvd
CVE	CVE-2023-29188	9 May 202300:57	–	cve
Cvelist	CVE-2023-29188 Cross-Site Scripting (XSS) vulnerability in SAP CRM WebClient UI	9 May 202300:57	–	cvelist
NVD	CVE-2023-29188	9 May 202301:15	–	nvd
Prion	Cross site scripting	9 May 202301:15	–	prion
Positive Technologies	PT-2023-2940 · Sap · Sap Crm Webclient Ui	9 May 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-29188	23 May 202501:46	–	redhatcve
Vulnrichment	CVE-2023-29188 Cross-Site Scripting (XSS) vulnerability in SAP CRM WebClient UI	9 May 202300:57	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "1c0b1310-0dd0-36ef-818d-145ffb20f5fc",
        "vendor": {
          "name": "SAP_SE"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "04f73618-b5db-3369-9d13-40f973b2939b",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "WEBCUIF 746"
      },
      {
        "id": "15111a42-3e49-3d2d-84ff-6cb654a59de5",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "WEBCUIF 800"
      },
      {
        "id": "173c1cdb-61c1-30d5-86a5-a3e2386b78ae",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "WEBCUIF 748"
      },
      {
        "id": "20aefe61-a363-3a9a-abbc-a920c6b523a1",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "WEBCUIF 801"
      },
      {
        "id": "342a22f8-15ea-3ddc-8ad5-01e31116079f",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "S4FND 106"
      },
      {
        "id": "409b582c-ed4c-303f-82e9-f1dfac745e19",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "S4FND 103"
      },
      {
        "id": "40fcd93c-a9e2-37f1-b9f7-e15f7b5c53b8",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "SAPSCORE 129"
      },
      {
        "id": "5488eda2-eab5-3f6b-a5e1-24d30ebf7ab6",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "WEBCUIF 731"
      },
      {
        "id": "6ed70990-1b31-3386-a886-e55b93574a12",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "S4FND 102"
      },
      {
        "id": "719a1abe-9ea6-3054-bf90-1687db8577b8",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "WEBCUIF 747"
      },
      {
        "id": "72be1224-20e5-35d8-ac3c-16fabcb1b146",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "WEBCUIF 701"
      },
      {
        "id": "96d3b1b2-08a5-34bd-9b6a-4af3002f6c75",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "S4FND 107"
      },
      {
        "id": "b6ea0deb-5196-3a2a-8495-c4da577702bc",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "S4FND 105"
      },
      {
        "id": "c73c2071-102f-311e-b783-a9fa233dd156",
        "product": {
          "name": "SAP CRM WebClient UI"
        },
        "product_version": "S4FND 104"
      }
    ]
  }
]

Source	Link
i7p	www.i7p.wdf.sap.corp/sap/support/notes/3315979
sap	www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

03 Oct 2025 20:07Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.15.4

EPSS0.00366

SSVC