CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-2405

SAP Solution Manager, 7.10, 7.20, Incident Management Work Center allows an attacker to upload a malicious script as an attachment and this could lead to possible Cross-Site Scripting.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.6%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

http://www.securityfocus.com/bid/103703
https://blogs.sap.com/2018/04/10/sap-security-patch-day-april-2018/
https://launchpad.support.sap.com/#/notes/2372688
http://www.securityfocus.com/bid/103703
https://blogs.sap.com/2018/04/10/sap-security-patch-day-april-2018/
https://launchpad.support.sap.com/#/notes/2372688

Products affected by CVE-2018-2405

Sap » Solution Manager » Version: 7.10

cpe:2.3:a:sap:solution_manager:7.10
Sap » Solution Manager » Version: 7.20

cpe:2.3:a:sap:solution_manager:7.20

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-2405

Products

Pricing

Contact Us