VYPR
Medium severity6.1NVD Advisory· Published Dec 12, 2017· Updated Jun 17, 2026

CVE-2017-16685

CVE-2017-16685

Description

Cross-Site scripting (XSS) in SAP Business Warehouse Universal Data Integration, from 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, due to insufficient encoding of user controlled inputs.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:a:sap:business_warehouse_universal_data_integration:7.10:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:sap:business_warehouse_universal_data_integration:7.10:*:*:*:*:*:*:*
    • cpe:2.3:a:sap:business_warehouse_universal_data_integration:7.11:*:*:*:*:*:*:*
    • cpe:2.3:a:sap:business_warehouse_universal_data_integration:7.20:*:*:*:*:*:*:*
    • cpe:2.3:a:sap:business_warehouse_universal_data_integration:7.30:*:*:*:*:*:*:*
    • cpe:2.3:a:sap:business_warehouse_universal_data_integration:7.31:*:*:*:*:*:*:*
    • cpe:2.3:a:sap:business_warehouse_universal_data_integration:7.40:*:*:*:*:*:*:*
    • cpe:2.3:a:sap:business_warehouse_universal_data_integration:7.50:*:*:*:*:*:*:*
    • (no CPE)range: 7.10 to 7.50
    • (no CPE)range: BI UDI from 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50
  • Range: 7.10 to 7.50

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.