VYPR
Medium severity6.1NVD Advisory· Published Feb 14, 2018· Updated Jun 17, 2026

CVE-2018-2371

CVE-2018-2371

Description

The SAML 2.0 service provider of SAP Netweaver AS Java Web Application, 7.50, does not sufficiently encode user controlled inputs, which results in Cross-Site Scripting (XSS) vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.