Vulnerabilities > CVE-2024-22129 - Unspecified vulnerability in SAP Companion

047910
CVSS 7.6 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
LOW
Availability impact
NONE
network
low complexity
sap

Summary

SAP Companion - version <3.1.38, has a URL with parameter that could be vulnerable to XSS attack. The attacker could send a malicious link to a user that would possibly allow an attacker to retrieve the sensitive information and cause minor impact on the integrity of the web application.

Vulnerable Configurations

Part Description Count
Application
Sap
1