Vulnerability in Sap Supplier_relationship_management

CVE-2014-4159

Open redirect vulnerability in in la/umTestSSO.jsp in SAP Supplier Relationship Management (SRM) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter.

EPSS: 0.013 (66.5th percentile) — read the EPSS interpretation.

Affected products

References