Vulnerabilities > SAP > BEX WEB Java Runtime Export WEB Service

DATE CVE VULNERABILITY TITLE RISK
2024-08-13 CVE-2024-42374 XML Injection (aka Blind XPath Injection) vulnerability in SAP BEX web Java Runtime Export web Service
BEx Web Java Runtime Export Web Service does not sufficiently validate an XML document accepted from an untrusted source.
network
low complexity
sap CWE-91
8.2