Input Validation Flaw in SAP Financial Consolidation Affects Web Administration Console
CVE-2022-41258
6.5MEDIUM
What is CVE-2022-41258?
An input validation flaw in SAP Financial Consolidation version 1010 permits authenticated attackers to perform script injection through the Web Administration Console when executing a common query. This vulnerability can lead to unauthorized access to sensitive information, as attackers may modify or view data that compromises the application's overall confidentiality, integrity, and availability.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
SAP Financial Consolidation = 1010
References
CVSS V3.1
Score:
6.5
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved