CVE-2021-21489 – SAP NetWeaver Enterprise Portal versions – 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does …

14 September 2021

Vuln ID: CVE-2021-21489

Published: 2021-09-14 12:15:08Z

Description: SAP NetWeaver Enterprise Portal versions – 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user related data, resulting in Stored Cross-Site Scripting (XSS) vulnerability. This would allow an attacker with administrative privileges to store a malicious script on the portal. The execution of the script content by a victim registered on the portal could compromise the confidentiality and integrity of portal content.

Source: NVD.NIST.GOV

Date:

14 September 2021

Categorie(s):

NVD

Tag(s):

NVD

Hackers Exploit Cisco Firewall Zero-Days to Hack Government Networks25 April 2024
A Comprehensive Cyber Guide: Best Practices for Small Businesses25 April 2024
Applying DevSecOps principles to machine learning workloads25 April 2024
Overcoming GenAI challenges in healthcare cybersecurity25 April 2024
25 cybersecurity AI stats you should know25 April 2024