CVE-2019-0321: ABAP Server and ABAP Platform (SAP Basis), versions, 7.31, 7.4, 7.5, do not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS)…

medium6.1CVSS 3.0

AVNACLPRNUIRSCCLILAN

ABAP Server and ABAP Platform (SAP Basis), versions, 7.31, 7.4, 7.5, do not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.

Affected

6 ranges

Vendor	Product	Version range	Fixed in
sap	netweaver_application_server_abap	—	—
sap	netweaver_as_abap	—	—
sap	netweaver_as_abap	—	—
sap_se	abap_server_and_abap_platform	< 7.31	7.31
sap_se	abap_server_and_abap_platform	< 7.4	7.4
sap_se	abap_server_and_abap_platform	< 7.5	7.5