Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Sap Subscribe
Filtered by product Business Warehouse Virtual Comp
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-39594 1 Sap 2 Business Warehouse, Business Warehouse Virtual Comp 2025-10-29 N/A 6.1 MEDIUM
SAP Business Warehouse - Business Planning and Simulation application does not sufficiently encode user controlled inputs, resulting in Reflected Cross-Site Scripting (XSS) vulnerability. After successful exploitation, an attacker can cause low impact on the confidentiality and integrity of the application.
CVE-2024-39595 1 Sap 2 Business Warehouse, Business Warehouse Virtual Comp 2025-10-28 N/A 5.4 MEDIUM
SAP Business Warehouse - Business Planning and Simulation application does not sufficiently encode user-controlled inputs, resulting in Stored Cross-Site Scripting (XSS) vulnerability. This vulnerability allows users to modify website content and on successful exploitation, an attacker can cause low impact to the confidentiality and integrity of the application.