VYPR

SAP Sourcing

by SAP

CVEs (2)

  • CVE-2022-41273Dec 13, 2022
    risk 0.00cvss epss 0.00

    Due to improper input sanitization in SAP Sourcing and SAP Contract Lifecycle Management - version 1100, an attacker can redirect a user to a malicious website. In order to perform this attack, the attacker sends an email to the victim with a manipulated link that appears to be…

  • CVE-2022-21274Jan 19, 2022
    risk 0.00cvss epss 0.01

    Vulnerability in the Oracle Sourcing product of Oracle E-Business Suite (component: Intelligence, RFx Creation). Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise…