Vulnerability in Sap Supplier_relationship_management
CVE-2014-4159
Open redirect vulnerability in in la/umTestSSO.jsp in SAP Supplier Relationship Management (SRM) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter.
EPSS: 0.013 (66.5th percentile) — read the EPSS interpretation.
Affected products
- Sap Supplier_relationship_management
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (Exploit, x_refsource_MISC)
- cve@mitre.org (x_refsource_CONFIRM)
- cve@mitre.org (vdb-entry, x_refsource_BID)