CVE-2023-33985

CVSS Score of 10 (low)

Details

Published Jun 13, 2023
Updated: Jun 20, 2023
CWE ID 79

Summary

CVE-2023-33985 is a vulnerability found in SAP NetWeaver Enterprise Portal version 7.50, which allows for reflected Cross-Site Scripting (XSS) attacks due to insufficient encoding of user-controlled inputs over the network. This vulnerability expands the potential impact of the attack. If successfully exploited, an attacker can view or modify information, leading to a limited impact on the confidentiality and integrity of the application. The vulnerability has a base severity rating of "MEDIUM" and a CVSS score of 6.1, indicating a moderate level of risk. The affected products include jSiHWw, pM0SNr, YBmKbU, and Y-CYuF. Remediation measures are not specified in the provided information.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-33985 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options