Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
URL Redirection vulnerability in SAP S/4HANA (Manage Catalog Items and Cross-Catalog search)
Vulnerability Description
SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to redirect users to a malicious site due to insufficient URL validation. As a result, it may have a slight impact on confidentiality and integrity.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
指向未可信站点的URL重定向(开放重定向)
Vulnerability Title
SAP S/4HANA 输入验证错误漏洞
Vulnerability Description
SAP S/4HANA是德国思爱普(SAP)公司的一个基于 SAP HANA 内存数据库系统的的企业资源管理软件。 SAP S/4HANA Manage Catalog Items和Cross-Catalog searches Fiori apps存在输入验证错误漏洞,该漏洞源于允许攻击者将用户重定向到恶意站点。
CVSS Information
N/A
Vulnerability Type
N/A