VYPR

NetWeaver Knowledge Management XML Forms

by SAP

CVEs (1)

  • CVE-2021-37531HigSep 14, 2021
    risk 0.57cvss 8.8epss 0.03

    SAP NetWeaver Knowledge Management XML Forms versions - 7.10, 7.11, 7.30, 7.31, 7.40, 7.50, contains an XSLT vulnerability which allows a non-administrative authenticated attacker to craft a malicious XSL stylesheet file containing a script with OS-level commands, copy it into a…