Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2024-21738
HistoryJan 09, 2024 - 2:15 a.m.

Cross site scripting

2024-01-0902:15:00
PRIOn knowledge base
www.prio-n.com
4
cross site scripting
sap
netweaver
abap
application server
platform
user inputs
vulnerability
exploitation

6.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.2%

JSON

SAP NetWeaver ABAP Application Server and ABAP Platform do not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.Β An attacker with low privileges can cause limited impact to confidentiality of the application data after successful exploitation.

Related

nessus 2
cvelist 1
nvd 1
cve 1
nessus
nessus
SAP NetWeaver AS ABAP HTTP Rapid Reset (Jan 2024)
2024-01-10 00:00:00
SAP NetWeaver AS ABAP XSS (Jan 2024)
2024-01-10 00:00:00
cvelist
cvelist
CVE-2024-21738 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver ABAP Application Server and ABAP Platform
2024-01-09 01:19:29
nvd
nvd
CVE-2024-21738
2024-01-09 02:15:46
cve
cve
CVE-2024-21738
2024-01-09 02:15:46

6.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.2%

JSON
Related for PRION:CVE-2024-21738
nessus2cvelist1nvd1cve1