The vulnerability of the “Manage Catalog Items” and “Cross-Catalog Search” components of the SAP S/4HANA software platform allows a hacker to redirect users to any arbitrary URL address.

The vulnerability of the “Manage Catalog Items” and “Cross-Catalog Search” components of the SAP S/4HANA software platform is related to the redirection of URLs to an unreliable website. Exploiting this vulnerability could allow a malicious actor to redirect users to any given URL address...

CVE-2023-40306

SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to redirect users to a malicious site due to insufficient URL validation. As a result, it may have a slight impact on confidentiality and integrity...

CVE-2023-40306

SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to redirect users to a malicious site due to insufficient URL validation. As a result, it may have a slight impact on confidentiality and integrity...

Input validation

SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to redirect users to a malicious site due to insufficient URL validation. As a result, it may have a slight impact on confidentiality and integrity...

PT-2023-4944 · Sap · Sap S/4Hana

Name of the Vulnerable Software and Affected Versions: SAP S/4HANA affected versions not specified Description: The issue is related to insufficient URL validation in the Manage Catalog Items and Cross-Catalog searches Fiori apps, allowing an attacker to redirect users to a malicious site. This m...