CVE-2022-29618

Name of the Vulnerable Software and Affected Versions SAP NetWeaver Development Infrastructure (Design Time Repository) versions 7.30, 7.31, 7.40, 7.50

Description The issue is caused by insufficient input validation, allowing an unauthenticated attacker to inject script into the URL and execute code in the user's browser. This can lead to a limited impact on confidentiality and integrity of the application, as an attacker can view or modify information.

Recommendations For versions 7.30, 7.31, 7.40, 7.50, update to a version that includes input validation to prevent script injection. At the moment, there is no information about a newer version that contains a fix for this vulnerability.