Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-40624

Published: 12/09/2023 Updated: 15/09/2023
CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3
VMScore: 0
Subscribe to Sap

Vulnerability Summary

SAP NetWeaver AS ABAP (applications based on Unified Rendering) - versions SAP_UI 754, SAP_UI 755, SAP_UI 756, SAP_UI 757, SAP_UI 758, SAP_BASIS 702, SAP_BASIS 731, allows an malicious user to inject JavaScript code that can be executed in the web-application. An attacker could thereby control the behavior of this web-application.

Vulnerable Product Search on Vulmon Subscribe to Product

sap netweaver application server abap 702

sap netweaver application server abap 754

sap netweaver application server abap 755

sap netweaver application server abap 731

sap netweaver application server abap 756

sap netweaver application server abap 757

sap netweaver application server abap 758

References

CWE-79https://me.sap.com/notes/3323163https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.htmlhttps://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651CVE-2024-34255elevation of privilegeCVE-2024-25529CVE-2024-4671NULL pointer dereferenceCVE-2024-25527template injectionCVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook