Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2024/02/16 12:0 a.m.66 views

SAP NetWeaver AS Java Multiple Vulnerabilities (Feb 2024)

SAP NetWeaver Application Server for Java is affected by multiple vulnerabilities, including the following: - The User Admin application of SAP NetWeaver AS for Java insufficiently validates and improperly encodes the incoming URL parameters before including them into the redirect URL. This resul...

8.8CVSS7.7AI score0.00519EPSS
Exploits0References5
Circl
Circl
added 2024/02/13 3:21 a.m.5 views

CVE-2024-22126

creationtimestamp| type| source ---|---|--- 2024-02-13 03:21:37+00:00| seen| https://t.me/ctinow/183582 2025-02-14 10:01:38+00:00| seen| Telegram/5m0bsIrq9XuwAfgpYHfzeZtvT9Xv8CAzQGcVGl2ry5agsGrd...

8.8CVSS8.1AI score0.00519EPSS
Exploits0References1
NVD
NVD
added 2024/02/13 2:15 a.m.14 views

CVE-2024-22126

The User Admin application of SAP NetWeaver AS for Java - version 7.50, insufficiently validates and improperly encodes the incoming URL parameters before including them into the redirect URL. This results in Cross-Site Scripting XSS vulnerability, leading to a high impact on confidentiality and...

8.8CVSS7.9AI score0.00519EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/02/13 1:58 a.m.16 views

CVE-2024-22126 Cross Site Scripting vulnerability in SAP NetWeaver AS Java (User Admin Application)

The User Admin application of SAP NetWeaver AS for Java - version 7.50, insufficiently validates and improperly encodes the incoming URL parameters before including them into the redirect URL. This results in Cross-Site Scripting XSS vulnerability, leading to a high impact on confidentiality and...

6.1CVSS8AI score0.00519EPSS
Exploits0References3
CVE
CVE
added 2024/02/13 1:58 a.m.68 views

CVE-2024-22126

CVE-2024-22126 – SAP NetWeaver AS Java (User Admin) XSS : The User Admin application in SAP NetWeaver AS Java 7.50 insufficiently validates and improperly encodes incoming URL parameters before including them in the redirect URL, enabling Cross-Site Scripting. Impact: high confidentiality impact;...

8.8CVSS6.2AI score0.00519EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/13 1:58 a.m.34 views

CVE-2024-22126 Cross Site Scripting vulnerability in SAP NetWeaver AS Java (User Admin Application)

The User Admin application of SAP NetWeaver AS for Java - version 7.50, insufficiently validates and improperly encodes the incoming URL parameters before including them into the redirect URL. This results in Cross-Site Scripting XSS vulnerability, leading to a high impact on confidentiality and...

6.1CVSS6.2AI score0.00519EPSS
Exploits0References3
Rows per page
Query Builder