Sap_se Sap Crm Webclient Ui

7 CVEs affecting Sap_se Sap Crm Webclient Ui. Latest disclosed: 2024-07-09. Critical: 0, High: 1.

Top CVEs affecting Sap_se Sap Crm Webclient Ui
CVESeverityScorePublishedSummary
CVE-2024-22130High7.62024-02-13Print preview option in SAP CRM WebClient UI - versions S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, S4FND 107, S4FND 108, WEBCUIF 700, WEBCUIF 701…
CVE-2024-37174Medium6.12024-07-09Custom CSS support option in SAP CRM WebClient UI does not sufficiently encode user-controlled inputs resulting in Cross-Site Scripting vulnerability. On succe…
CVE-2024-37173Medium6.12024-07-09Due to insufficient input validation, SAP CRM WebClient UI allows an unauthenticated attacker to craft a URL link which embeds a malicious script. When a v…
CVE-2024-34686Medium6.12024-06-11Due to insufficient input validation, SAP CRM WebClient UI allows an unauthenticated attacker to craft a URL link which embeds a malicious script. When a victi…
CVE-2023-29188Medium5.42023-05-09SAP CRM WebClient UI - versions SAPSCORE 129, S4FND 102, S4FND 103, S4FND 104, S4FND 105, S4FND 106, S4FND 107, WEBCUIF 701, WEBCUIF 731, WEBCUIF 746, WEBCUIF…
CVE-2024-39598Medium5.02024-07-09SAP CRM (WebClient UI Framework) allows an authenticated attacker to enumerate accessible HTTP endpoints in the internal network by specially crafting HTTP req…
CVE-2024-37175Medium4.32024-07-09SAP CRM WebClient does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. This could allow an attacker…