CVE-2022-28215
published 2022-04-12CVE-2022-28215: SAP NetWeaver ABAP Server and ABAP Platform - versions 740, 750, 787, allows an unauthenticated attacker to redirect users to a malicious site due to…
medium4.7CVSS 3.1
AVNACLPRNUIRSCCLINAN
SAP NetWeaver ABAP Server and ABAP Platform - versions 740, 750, 787, allows an unauthenticated attacker to redirect users to a malicious site due to insufficient URL validation. This could lead to the user being tricked to disclose personal information.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | netweaver_abap | — | — |
| sap | netweaver_abap | — | — |
| sap | netweaver_abap | — | — |
| sap_se | sap_netweaver_abap_server_and_abap_platform | — | — |
| sap_se | sap_netweaver_abap_server_and_abap_platform | — | — |
| sap_se | sap_netweaver_abap_server_and_abap_platform | — | — |