VYPR
Unrated severityNVD Advisory· Published Jun 9, 2021· Updated Aug 3, 2024

CVE-2021-33664

CVE-2021-33664

Description

SAP NetWeaver Application Server ABAP (Applications based on Web Dynpro ABAP), versions - SAP_UI - 750,752,753,754,755, SAP_BASIS - 702, 731 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.

Affected products

2
  • SAP SE/SAP NetWeaver Application Server ABAP (Applications based on Web Dynpro ABAP)v5
    Range: < SAP_UI - 750

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.