VYPR
Unrated severityNVD Advisory· Published Jun 13, 2014· Updated Jun 17, 2026

CVE-2014-4159

CVE-2014-4159

Description

Open redirect vulnerability in in la/umTestSSO.jsp in SAP Supplier Relationship Management (SRM) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter.

Affected products

2
  • cpe:2.3:a:sap:supplier_relationship_management:-:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sap:supplier_relationship_management:-:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.