The Create Single Payment application of SAP S/4HANA - versions 100, 101, 102, 103, 104, 105, 106, 107, 108, allows an malicious user to upload the XML file as an attachment. When clicked on the XML file in the attachment section, the file gets opened in the browser to cause the entity loops to slow down the browser.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap s\\/4 hana 102 |
||
sap s\\/4 hana 103 |
||
sap s\\/4 hana 104 |
||
sap s\\/4 hana 105 |
||
sap s\\/4 hana 101 |
||
sap s\\/4 hana 106 |
||
sap s\\/4 hana 107 |
||
sap s\\/4 hana 100 |
||
sap s\\/4 hana 108 |