Vulnerabilities (CVE)

Filtered by vendor Sap Subscribe
Filtered by product Netweaver Java Web Application
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-2371 1 Sap 1 Netweaver Java Web Application 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
The SAML 2.0 service provider of SAP Netweaver AS Java Web Application, 7.50, does not sufficiently encode user controlled inputs, which results in Cross-Site Scripting (XSS) vulnerability.