Vulnerability Database

290,020

Total vulnerabilities in the database

CVE-2023-40306

SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to redirect users to a malicious site due to insufficient URL validation. As a result, it may have a slight impact on confidentiality and integrity.

  • Published: Sep 9, 2023
  • Updated: Sep 14, 2023
  • CVE: CVE-2023-40306
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.1
  • AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWEs:

Software From Fixed in
sap / s/4hana 103 103.x
sap / s/4hana 104 104.x
sap / s/4hana 105 105.x
sap / s/4hana 106 106.x