Under some circumstances the SAML SSO implementation in the SAP NetWeaver (SAP_BASIS versions 702, 730, 731, 740 and SAP ABAP Platform (SAP_BASIS versions 750, 751, 752, 753, 754), allows an attacker to include invalidated data in the HTTP response header sent to a Web user, leading to HTTP Response Splitting vulnerability.
CPE | Name | Operator | Version |
---|---|---|---|
abap_platform | eq | 7.51 | |
abap_platform | eq | 7.52 | |
abap_platform | eq | 7.53 | |
abap_platform | eq | 7.54 | |
abap_platform | eq | 7.50 | |
netweaver | eq | 7.30 | |
netweaver | eq | 7.31 | |
netweaver | eq | 7.02 | |
netweaver | eq | 7.40 |