VYPR

Enterprise Threat Detection

by SAP

CVEs (2)

  • CVE-2022-22529Jan 14, 2022
    risk 0.00cvss epss 0.01

    SAP Enterprise Threat Detection (ETD) - version 2.0, does not sufficiently encode user-controlled inputs which may lead to an unauthorized attacker possibly exploit XSS vulnerability. The UIs in ETD are using SAP UI5 standard controls, the UI5 framework provides automated output…

  • CVE-2020-6254May 12, 2020
    risk 0.00cvss epss 0.01

    SAP Enterprise Threat Detection, versions 1.0, 2.0, does not sufficiently encode error response pages in case of errors, allowing XSS payload reflecting in the response, leading to reflected Cross Site Scripting.