Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
SAP Support Packages
(SAPKA70020, SAPKA70021, SAPKA70022, SAPKA70023, SAPKA70024, SAPKA70025, SAPKA70026, SAPKA70027, SAPKA70028, SAPKA70029, SAPKA70030, SAPKA70031, SAPKA70032, SAPKA70033, SAPKA70034, SAPKA70035, SAPKA70036, SAPKA70037, SAPKA70038, SAPKA70039, SAPKU40018, SAPKU40019, SAPKU40020, SAPKU40021, SAPKU40022, SAPKU40023, SAPKU40024, SAPKU40025, SAPKU40026, SAPKU40027, SAPKU40028, SAPKU40029, SAPKU40030, SAPKU40031, SAPKU40032, SAPKU40033, SAPKU40034, SAPKU40035, SAPKU40036, SAPKU40037, SAPKA70019, SAPKU40017)
SAP Notes
(1259414-7)
Описание
The PCUI Framework does not perform adequate input validation with BSP application that allows a URL to be added as an attachment
Как исправить
Appropriate encoding mechanism have been added to prevent such attacks.Please implement the corrections attached.
Ссылки