CVE-2024-41735

Name of the Vulnerable Software and Affected Versions SAP Commerce Backoffice (affected versions not specified)

Description The issue is related to the insufficient encoding of user-controlled inputs in the SAP Commerce Backoffice application, resulting in a Cross-Site Scripting (XSS) vulnerability. This vulnerability may allow a remote attacker to conduct cross-site scripting attacks, potentially affecting the confidentiality and integrity of the application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.