CVE-2024-21738

Name of the Vulnerable Software and Affected Versions SAP NetWeaver ABAP Application Server and ABAP Platform (affected versions not specified)

Description The issue arises from insufficient encoding of user-controlled inputs, resulting in a Cross-Site Scripting (XSS) vulnerability. An attacker with low privileges can cause limited impact to the confidentiality of the application data after successful exploitation. The vulnerability can be exploited by a remote attacker to perform cross-site scripting attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.