Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:49 a.m.7 views

CVE-2023-37488

In SAP NetWeaver Process Integration - versions SAPXIESR 7.50, SAPXITOOL 7.50, SAPXIAF 7.50, user-controlled inputs, if not sufficiently encoded, could result in Cross-Site Scripting XSS attack. On successful exploitation the attacker can cause limited impact on confidentiality and integrity of t...

6.1CVSS5.9AI score0.00317EPSS
Exploits0
Cvelist
Cvelist
added 2023/08/08 12:43 a.m.30 views

CVE-2023-37488 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Process Integration

In SAP NetWeaver Process Integration - versions SAPXIESR 7.50, SAPXITOOL 7.50, SAPXIAF 7.50, user-controlled inputs, if not sufficiently encoded, could result in Cross-Site Scripting XSS attack. On successful exploitation the attacker can cause limited impact on confidentiality and integrity of t...

6.1CVSS6.1AI score0.00317EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/08/08 12:43 a.m.15 views

CVE-2023-37488 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Process Integration

In SAP NetWeaver Process Integration - versions SAPXIESR 7.50, SAPXITOOL 7.50, SAPXIAF 7.50, user-controlled inputs, if not sufficiently encoded, could result in Cross-Site Scripting XSS attack. On successful exploitation the attacker can cause limited impact on confidentiality and integrity of t...

6.1CVSS5.9AI score0.00317EPSS
Exploits0References2
CVE
CVE
added 2023/08/08 12:43 a.m.74 views

CVE-2023-37488

Summary: CVE-2023-37488 affects SAP NetWeaver Process Integration components (SAP_XIESR 7.50, SAP_XITOOL 7.50, SAP_XIAF 7.50). The issue is a Cross-Site Scripting (XSS) vulnerability stemming from user-controlled inputs that are not sufficiently encoded, with limited impact to confidentiality and...

6.1CVSS6AI score0.00317EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder