Vulnerabilities > CVE-2023-26457 - Unspecified vulnerability in SAP Content Server 7.53
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
SAP Content Server - version 7.53, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. After successful exploitation, an attacker can read and modify some sensitive information but cannot delete the data.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |