cvedb.io
CVE-2022-26105
MEDIUM · CVSS 6.1
EPSS exploitation probability: 0%
Published 2022-04-12T17:15:09.567 · Last modified 2026-06-17T04:34:41.633

Summary

SAP NetWeaver Enterprise Portal - versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, is susceptible to script execution attack by an unauthenticated attacker due to improper sanitization of the user inputs while interacting on the Network. On successful exploitation, an attacker can view or modify information causing a limited impact on confidentiality and integrity of the application.

Affected products

sap — netweaver_enterprise_portal

Does this affect you?

Add your gear to cvedb and we'll alert you only when sap ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.