cnvd - cnvd-2021-03703

CNVD-2021-03703

Vulnerability from cnvd - Published: 2021-01-18

Title

SAP NetWeaver AS ABAP跨站脚本漏洞（CNVD-2021-03703）

Description

SAP NetWeaver AS ABAP Business Server是德国思爱普（SAP）公司的一款适用于ABAP（高级商务应用编程）的应用服务器。 SAP NetWeaver AS ABAP 存在安全漏洞，该漏洞源于未能充分编码URL，允许攻击者在URL中输入恶意的java脚本，这可能会在浏览器中执行，导致反射跨站脚本(XSS)漏洞。

Severity

中

Patch Name

SAP NetWeaver AS ABAP跨站脚本漏洞（CNVD-2021-03703）的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接：https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079

Reference

https://vigilance.fr/vulnerability/SAP-multiple-vulnerabilities-of-December-2020-34054

Impacted products

Name
['SAP SAP NetWeaver AS ABAP 740', 'SAP SAP NetWeaver AS ABAP 750', 'SAP SAP NetWeaver AS ABAP 751', 'SAP SAP NetWeaver AS ABAP 752', 'SAP SAP NetWeaver AS ABAP 753', 'SAP SAP NetWeaver AS ABAP 754']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-26835",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-26835"
    }
  },
  "description": "SAP NetWeaver AS ABAP Business Server\u662f\u5fb7\u56fd\u601d\u7231\u666e\uff08SAP\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u9002\u7528\u4e8eABAP\uff08\u9ad8\u7ea7\u5546\u52a1\u5e94\u7528\u7f16\u7a0b\uff09\u7684\u5e94\u7528\u670d\u52a1\u5668\u3002\n\nSAP NetWeaver AS ABAP \u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u672a\u80fd\u5145\u5206\u7f16\u7801URL\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u5728URL\u4e2d\u8f93\u5165\u6076\u610f\u7684java\u811a\u672c\uff0c\u8fd9\u53ef\u80fd\u4f1a\u5728\u6d4f\u89c8\u5668\u4e2d\u6267\u884c\uff0c\u5bfc\u81f4\u53cd\u5c04\u8de8\u7ad9\u811a\u672c(XSS)\u6f0f\u6d1e\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1ahttps://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-03703",
  "openTime": "2021-01-18",
  "patchDescription": "SAP NetWeaver AS ABAP Business Server\u662f\u5fb7\u56fd\u601d\u7231\u666e\uff08SAP\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u9002\u7528\u4e8eABAP\uff08\u9ad8\u7ea7\u5546\u52a1\u5e94\u7528\u7f16\u7a0b\uff09\u7684\u5e94\u7528\u670d\u52a1\u5668\u3002\r\n\r\nSAP NetWeaver AS ABAP \u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u672a\u80fd\u5145\u5206\u7f16\u7801URL\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u5728URL\u4e2d\u8f93\u5165\u6076\u610f\u7684java\u811a\u672c\uff0c\u8fd9\u53ef\u80fd\u4f1a\u5728\u6d4f\u89c8\u5668\u4e2d\u6267\u884c\uff0c\u5bfc\u81f4\u53cd\u5c04\u8de8\u7ad9\u811a\u672c(XSS)\u6f0f\u6d1e\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "SAP NetWeaver AS ABAP\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2021-03703\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "SAP SAP NetWeaver AS ABAP 740",
      "SAP SAP NetWeaver AS ABAP 750",
      "SAP SAP NetWeaver AS ABAP 751",
      "SAP SAP NetWeaver AS ABAP 752",
      "SAP SAP NetWeaver AS ABAP 753",
      "SAP SAP NetWeaver AS ABAP 754"
    ]
  },
  "referenceLink": "https://vigilance.fr/vulnerability/SAP-multiple-vulnerabilities-of-December-2020-34054",
  "serverity": "\u4e2d",
  "submitTime": "2020-12-15",
  "title": "SAP NetWeaver AS ABAP\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2021-03703\uff09"
}

CVE-2020-26835 (GCVE-0-2020-26835)

Vulnerability from cvelistv5 – Published: 2020-12-09 16:30 – Updated: 2024-08-04 16:03

Summary

SAP NetWeaver AS ABAP, versions - 740, 750, 751, 752, 753, 754 , does not sufficiently encode URL which allows an attacker to input malicious java script in the URL which could be executed in the browser resulting in Reflected Cross-Site Scripting (XSS) vulnerability.

Severity ?

5.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CWE

Cross Site Scripting

Assigner

sap

References

URL

Tags

	https://wiki.scn.sap.com/wiki/pages/viewpage.acti…	x_refsource_MISC
	https://launchpad.support.sap.com/#/notes/2996479	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	SAP SE	SAP NetWeaver AS ABAP	Affected: < 740 Affected: < 750 Affected: < 751 Affected: < 752 Affected: < 753 Affected: < 754

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T16:03:22.606Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://launchpad.support.sap.com/#/notes/2996479"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "SAP NetWeaver AS ABAP",
          "vendor": "SAP SE",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 740"
            },
            {
              "status": "affected",
              "version": "\u003c 750"
            },
            {
              "status": "affected",
              "version": "\u003c 751"
            },
            {
              "status": "affected",
              "version": "\u003c 752"
            },
            {
              "status": "affected",
              "version": "\u003c 753"
            },
            {
              "status": "affected",
              "version": "\u003c 754"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "SAP NetWeaver AS ABAP, versions - 740, 750, 751, 752, 753, 754 , does not sufficiently encode URL which allows an attacker to input malicious java script in the URL which could be executed in the browser resulting in Reflected Cross-Site Scripting (XSS) vulnerability."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Cross Site Scripting",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-12-09T16:30:53",
        "orgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd",
        "shortName": "sap"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://launchpad.support.sap.com/#/notes/2996479"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cna@sap.com",
          "ID": "CVE-2020-26835",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "SAP NetWeaver AS ABAP",
                      "version": {
                        "version_data": [
                          {
                            "version_name": "\u003c",
                            "version_value": "740"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "750"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "751"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "752"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "753"
                          },
                          {
                            "version_name": "\u003c",
                            "version_value": "754"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "SAP SE"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "SAP NetWeaver AS ABAP, versions - 740, 750, 751, 752, 753, 754 , does not sufficiently encode URL which allows an attacker to input malicious java script in the URL which could be executed in the browser resulting in Reflected Cross-Site Scripting (XSS) vulnerability."
            }
          ]
        },
        "impact": {
          "cvss": {
            "baseScore": "5.3",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Cross Site Scripting"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079",
              "refsource": "MISC",
              "url": "https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564757079"
            },
            {
              "name": "https://launchpad.support.sap.com/#/notes/2996479",
              "refsource": "MISC",
              "url": "https://launchpad.support.sap.com/#/notes/2996479"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "e4686d1a-f260-4930-ac4c-2f5c992778dd",
    "assignerShortName": "sap",
    "cveId": "CVE-2020-26835",
    "datePublished": "2020-12-09T16:30:53",
    "dateReserved": "2020-10-07T00:00:00",
    "dateUpdated": "2024-08-04T16:03:22.606Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2021-03703

CVE-2020-26835 (GCVE-0-2020-26835)

Tags

Sightings

Nomenclature