Script Execution Vulnerability in SAP NetWeaver Enterprise Portal
CVE-2022-26105
6.1MEDIUM
What is CVE-2022-26105?
SAP NetWeaver Enterprise Portal is vulnerable to script execution attacks due to inadequate sanitization of user inputs during network interactions. An unauthenticated attacker can exploit this vulnerability to execute arbitrary scripts, potentially allowing them to view or alter sensitive information, thereby affecting the confidentiality and integrity of the application.
Affected Version(s)
SAP NetWeaver Enterprise Portal 7.10
SAP NetWeaver Enterprise Portal 7.11
SAP NetWeaver Enterprise Portal 7.20