CVE-2019-0368
CVE-2019-0368
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
08 oct 2019Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
SAP Customer Relationship Management (Email Management), versions: S4CRM before 1.0 and 2.0, BBPCRM before 7.0, 7.01, 7.02, 7.12, 7.13 and 7.14, does not sufficiently encode user-controlled inputs within the mail client resulting in Cross-Site Scripting vulnerability.
Productos afectados
SAP SE · SAP Customer Relationship Management (Email Management - BBPCRM)SAP SE · SAP Customer Relationship Management (Email Management - S4CRM)¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →