CVE-2023-23860

Name of the Vulnerable Software and Affected Versions SAP NetWeaver AS for ABAP and ABAP Platform versions 740, 750, 751, 752, 753, 754, 755, 756, 757, 789, 790

Description The issue allows an unauthenticated attacker to craft a link, which when clicked by an unsuspecting user, can be used to redirect the user to a malicious site. This could potentially read or modify some sensitive information or expose the victim to a phishing attack.

Recommendations For SAP NetWeaver AS for ABAP and ABAP Platform versions 740, 750, 751, 752, 753, 754, 755, 756, 757, 789, 790, consider implementing additional security measures to prevent unauthorized redirections, such as validating user input and implementing robust authentication mechanisms. At the moment, there is no information about a newer version that contains a fix for this vulnerability.