Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Open Redirect vulnerabilities in SAP S/4HANA landscape (SAP E-Recruiting BSP)
Vulnerability Description
SAP S/4HANA landscape SAP E-Recruiting BSP allows an unauthenticated attacker to craft malicious links, when clicked the victim could be redirected to the page controlled by the attacker. This has low impact on confidentiality and integrity of the application with no impact on availability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
指向未可信站点的URL重定向(开放重定向)
Vulnerability Title
SAP S/4HANA 输入验证错误漏洞
Vulnerability Description
SAP S/4HANA是德国思爱普(SAP)公司的一个基于 SAP HANA 内存数据库系统的的企业资源管理软件。 SAP S/4HANA存在输入验证错误漏洞,该漏洞源于攻击者可制作恶意链接,可能导致受害者被重定向到攻击者控制的页面。
CVSS Information
N/A
Vulnerability Type
N/A