CVE-2022-35226

UNKNOWN 0.0

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

SAP Data Services Management allows an attacker to copy the data from a request and echoed into the application's immediate response, it will lead to a Cross-Site Scripting vulnerability. The attacker would have to log in to the management console to perform such as an attack, only few of the pages are vulnerable in the DS management console.

CWE	CWE-79
Vendor	sap se
Product	sap data services management console
Published	Oct 11, 2022
Last Updated	Aug 3, 2024

Stay Ahead of the Next One

Get instant alerts for sap se sap data services management console

Be the first to know when new unknown vulnerabilities affecting sap se sap data services management console are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

SAP SE / SAP Data Services Management Console

4.2 4.3

References

NVD ↗ CVE.org ↗ EPSS Data ↗

sap.com: https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html launchpad.support.sap.com: https://launchpad.support.sap.com/#/notes/3167342