Design/Logic Flaw

2021-02-0921:15:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

38.6%

JSON

SAP UI5 versions before 1.38.49, 1.52.49, 1.60.34, 1.71.31, 1.78.18, 1.84.5, 1.85.4, 1.86.1 allows an unauthenticated attacker to redirect users to a malicious site due to Reverse Tabnabbing vulnerabilities.

CPENameOperatorVersion
ui5lt1.38.49
ui5ge1.50.5
ui5lt1.52.49
ui5ge1.60.1
ui5lt1.60.34
ui5ge1.71.0
ui5lt1.71.31
ui5ge1.78.0
ui5lt1.78.18
ui5ge1.84.0

Name	Operator	Version
ui5	lt	1.38.49
ui5	ge	1.50.5
ui5	lt	1.52.49
ui5	ge	1.60.1
ui5	lt	1.60.34
ui5	ge	1.71.0
ui5	lt	1.71.31
ui5	ge	1.78.0
ui5	lt	1.78.18
ui5	ge	1.84.0

Rows per page:

1-10 of 151

References

launchpad.support.sap.com/

wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=568460543