SAP NetWeaver (Design Time Repository) - version 7.50, returns an unfavorable content type for some versioned files, which could allow an authorized attacker to create a file with a malicious content and send a link to a victim in an email or instant message. Under certain circumstances, this could lead to Cross-Site Scripting vulnerability.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: sap
Published: 2023-06-13T02:44:24.041Z
Updated: 2024-08-02T15:54:14.117Z
Reserved: 2023-05-24T20:41:32.833Z
Link: CVE-2023-33984
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-06-13T03:15:09.567
Modified: 2023-06-20T19:37:16.977
Link: CVE-2023-33984
Redhat
No data.