SAP-3559307 — Vulnetix

SAP-3559307 PUBLISHED

Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP (applications based on SAP GUI for HTML) Product: SAP NetWeaver Application Server ABAP (applications based on SAP GUI for HTML), Versions - KRNL64NUC 7.22, 7.22EXT, KRNL64UC 7.22, 7.22EXT, 7.53, KERNEL 7.22, 7.53, 7.54, 7.77, 7.89, 7.93, 9.14 Severity: Medium (CVSS 4.7)

Timeline

Jan 1, 2025 CVE Published

References

Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP (applications based on SAP GUI for HTML) advisory
https://support.sap.com/en/my-support/knowledge-base/security-notes-news/bulletin-2025.html advisory
https://www.cve.org/CVERecord?id=CVE-2025-26653 advisory

Open in Interactive Console →