CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-30742

SAP CRM (WebClient UI) - versions S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, S4FND 107, WEBCUIF 700, WEBCUIF 701, WEBCUIF 731, WEBCUIF 746, WEBCUIF 747, WEBCUIF 748, WEBCUIF 800, WEBCUIF 801, does not sufficiently encode user-controlled inputs, resulting in a stored Cross-Site Scripting (XSS) vulnerability.An attacker could store a malicious URL and lure the victim to click, causing the script supplied by the attacker to execute in the victim user's session. The information from the victim's session could then be modified or read by the attacker.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 56.7%

CVSS Severity

CVSS v3 Score 6.1

References

Products affected by CVE-2023-30742

Sap » Customer Relationship Management S4fnd » Version: 102

cpe:2.3:a:sap:customer_relationship_management_s4fnd:102
Sap » Customer Relationship Management S4fnd » Version: 103

cpe:2.3:a:sap:customer_relationship_management_s4fnd:103
Sap » Customer Relationship Management S4fnd » Version: 104

cpe:2.3:a:sap:customer_relationship_management_s4fnd:104
Sap » Customer Relationship Management S4fnd » Version: 105

cpe:2.3:a:sap:customer_relationship_management_s4fnd:105
Sap » Customer Relationship Management S4fnd » Version: 106

cpe:2.3:a:sap:customer_relationship_management_s4fnd:106
Sap » Customer Relationship Management S4fnd » Version: 107

cpe:2.3:a:sap:customer_relationship_management_s4fnd:107
Sap » Customer Relationship Management Webclient Ui » Version: 700

cpe:2.3:a:sap:customer_relationship_management_webclient_ui:700
Sap » Customer Relationship Management Webclient Ui » Version: 701

cpe:2.3:a:sap:customer_relationship_management_webclient_ui:701
Sap » Customer Relationship Management Webclient Ui » Version: 731

cpe:2.3:a:sap:customer_relationship_management_webclient_ui:731
Sap » Customer Relationship Management Webclient Ui » Version: 746

cpe:2.3:a:sap:customer_relationship_management_webclient_ui:746
Sap » Customer Relationship Management Webclient Ui » Version: 747

cpe:2.3:a:sap:customer_relationship_management_webclient_ui:747
Sap » Customer Relationship Management Webclient Ui » Version: 748

cpe:2.3:a:sap:customer_relationship_management_webclient_ui:748
Sap » Customer Relationship Management Webclient Ui » Version: 800

cpe:2.3:a:sap:customer_relationship_management_webclient_ui:800
Sap » Customer Relationship Management Webclient Ui » Version: 801

cpe:2.3:a:sap:customer_relationship_management_webclient_ui:801

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-30742

Products

Pricing

Contact Us