SAP NetWeaver Application Server ABAP (Applications based on Web Dynpro ABAP), versions - SAP_UI - 750,752,753,754,755, SAP_BASIS - 702, 731 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
References
Link | Resource |
---|---|
https://launchpad.support.sap.com/#/notes/3025604 | Permissions Required Vendor Advisory |
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=578125999 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: sap
Published: 2021-06-09T13:32:50
Updated: 2021-06-09T13:32:50
Reserved: 2021-05-28T00:00:00
Link: CVE-2021-33664
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-06-09T14:15:10.040
Modified: 2021-06-16T00:51:30.277
Link: CVE-2021-33664
JSON object: View
Redhat Information
No data.
CWE