CVE-2022-32247

CVE-2022-32247

Vendor Sap Se
Product SAP NetWeaver Enterprise Portal
Weakness CWE-79 · XSS
Published July 12, 2022
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

SAP NetWeaver Enterprise Portal - versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, is susceptible to script execution attack by an unauthenticated attacker due to improper sanitization of the User inputs while interacting on the Network. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality and integrity of the application.

Key dates

02Disclosure timeline

July 12, 2022 CVE published
August 3, 2024 Record updated