SAP NetWeaver (Design Time Repository) - version 7.50, returns an unfavorable content type for some versioned files, which could allow an authorized attacker to create a file with a malicious content and send a link to a victim in an email or instant message. Under certain circumstances, this could lead to Cross-Site Scripting vulnerability.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: sap

Published: 2023-06-13T02:44:24.041Z

Updated: 2024-08-02T15:54:14.117Z

Reserved: 2023-05-24T20:41:32.833Z

Link: CVE-2023-33984

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2023-06-13T03:15:09.567

Modified: 2023-06-20T19:37:16.977

Link: CVE-2023-33984

cve-icon Redhat

No data.