Skip to main content

Sourcing

2 CVEs product

Monthly

CVE-2022-41273 MEDIUM This Month

Due to improper input sanitization in SAP Sourcing and SAP Contract Lifecycle Management - version 1100, an attacker can redirect a user to a malicious website. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SAP Open Redirect Contract Lifecycle Manager Sourcing
NVD
CVSS 3.1
6.1
EPSS
0.5%
CVE-2021-2263 HIGH PATCH This Week

Vulnerability in the Oracle Sourcing product of Oracle E-Business Suite (component: Intelligence, RFx). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Sourcing
NVD
CVSS 3.1
8.1
EPSS
1.0%
EPSS 0% CVSS 6.1
MEDIUM This Month

Due to improper input sanitization in SAP Sourcing and SAP Contract Lifecycle Management - version 1100, an attacker can redirect a user to a malicious website. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SAP Open Redirect Contract Lifecycle Manager +1
NVD
EPSS 1% CVSS 8.1
HIGH PATCH This Week

Vulnerability in the Oracle Sourcing product of Oracle E-Business Suite (component: Intelligence, RFx). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Sourcing
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy