CVE-2022-29610

CVE-2022-29610

Vendor Sap Se

Product SAP NetWeaver Application Server ABAP

Weakness CWE-79 · XSS

Published May 11, 2022

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

SAP NetWeaver Application Server ABAP allows an authenticated attacker to upload malicious files and delete (theme) data, which could result in Stored Cross-Site Scripting (XSS) attack.

Key dates

02Disclosure timeline

May 11, 2022 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-29610 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/79.html

Related vulnerabilities

Identifiers

CVE CVE-2022-29610

CWE CWE-79

Affected versions

Vendor Sap Se

Product SAP NetWeaver Application Server ABAP

Affected 753

Vendor Sap Se

Product SAP NetWeaver Application Server ABAP

Affected 754

Vendor Sap Se

Product SAP NetWeaver Application Server ABAP

Affected 755

Vendor Sap Se

Product SAP NetWeaver Application Server ABAP

Affected 756

01Description

02Disclosure timeline

03References

04Related CVE