Input Validation Flaw in SAP Financial Consolidation Affects Web Administration Console
CVE-2022-41258
6.5MEDIUM
What is CVE-2022-41258?
An input validation flaw in SAP Financial Consolidation version 1010 permits authenticated attackers to perform script injection through the Web Administration Console when executing a common query. This vulnerability can lead to unauthorized access to sensitive information, as attackers may modify or view data that compromises the application's overall confidentiality, integrity, and availability.
Affected Version(s)
SAP Financial Consolidation = 1010