VYPR
Unrated severityNVD Advisory· Published Feb 13, 2024· Updated Aug 1, 2024

Cross-Site Scripting (XSS) vulnerability in SAP Companion

CVE-2024-22129

Description

SAP Companion - version <3.1.38, has a URL with parameter that could be vulnerable to XSS attack. The attacker could send a malicious link to a user that would possibly allow an attacker to retrieve the sensitive information and cause minor impact on the integrity of the web application.

Affected products

2
  • SAP/Sap Companionllm-fuzzy2 versions
    <3.1.38+ 1 more
    • (no CPE)range: <3.1.38
    • (no CPE)range: <3.1.38

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.