SAP Supplier Relationship Management (Master Data Management Catalogue) allows an unauthenticated attacker to execute malicious scripts in the application, potentially leading to a Cross-Site Scripting (XSS) vulnerability. This has no impact on the availability of the application, but it can have some minor impact on its confidentiality and integrity.
References
Configurations
No configuration.
History
No history.
Information
Published : 2025-05-13 01:15
Updated : 2025-05-13 19:35
NVD link : CVE-2025-43006
Mitre link : CVE-2025-43006
CVE.ORG link : CVE-2025-43006
JSON object : View
Products Affected
No product.
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')