CVE-2018-2476

CVE-2018-2476

EPSS 1.0%

Due to insufficient URL Validation in forums in SAP NetWeaver versions 7.30, 7.31, 7.40, an attacker can redirect users to a malicious site.

Productos afectados

SAP · SAP NetWeaver (forums)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://launchpad.support.sap.com/#/notes/2658755 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=503809832 http://www.securityfocus.com/bid/105898