Unrated severityNVD Advisory· Published Sep 14, 2021· Updated Aug 3, 2024
CVE-2021-33675
CVE-2021-33675
Description
Under certain conditions, SAP Contact Center - version 700, does not sufficiently encode user-controlled inputs. This allows an attacker to exploit a Reflected Cross-Site Scripting (XSS) vulnerability through phishing and to execute arbitrary code on the victim's browser.
Affected products
2- Range: = 700
- SAP SE/SAP Contact Centerv5Range: < 700
Patches
Vulnerability mechanics
References
2- launchpad.support.sap.commitrex_refsource_MISC
- wiki.scn.sap.com/wiki/pages/viewpage.actionmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.