CVE-2016-1911

Name of the Vulnerable Software and Affected Versions SAP NetWeaver version 7.4

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML. The vulnerabilities are related to the Runtime Workbench (RWB) and the Pmitest servlet in the Process Monitoring Infrastructure (PMI).

Recommendations For SAP NetWeaver version 7.4, apply the fixes as described in SAP Security Notes to address the XSS vulnerabilities in the Runtime Workbench and the Pmitest servlet.