Unrated severityNVD Advisory· Published May 9, 2023· Updated Jan 28, 2025
Cross-Site Scripting (XSS) vulnerability in SAP Business Planning and Consolidation
CVE-2023-31407
Description
SAP Business Planning and Consolidation - versions 740, 750, allows an authorized attacker to upload a malicious file, resulting in Cross-Site Scripting vulnerability. After successful exploitation, an attacker can cause limited impact on confidentiality and integrity of the application.
Affected products
2>= 740, <= 750+ 1 more
- (no CPE)range: >= 740, <= 750
- (no CPE)range: 740
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.