Description
Solution Sales Configuration running on Java Server Pages (JSP) technology is not protected against Clickjacking attacks.
Available fix and Supported packages
- FBS_SOLCONF_IPC | 2.0 | 2.0
- FBS_SOLCONF_SHRAPP | 2.0 | 2.0
- FBS_SOLCONF_SHRWEB | 2.0 | 2.0
- FBS_SOLCONF_SHRJAV | 2.0 | 2.0
- FBS_SOLCONF_SAP-SHRJAV | 2.0 | 2.0
- SAP-CRMJAV | 731 | 731
- SAP-CRMWEB | 731 | 731
- SAP-SHRWEB | 731 | 731
- SAP-SHRJAV | 731 | 731
- SAP-CRMAPP | 731 | 731
- SAP-SHRAPP | 731 | 731
- CRM JAVA APPLICATIONS 7.31 | SP003 | 000000
- CRM JAVA APPLICATIONS 7.31 | SP004 | 000000
- CRM JAVA COMPONENTS 7.31 | SP003 | 000000
- CRM JAVA COMPONENTS 7.31 | SP004 | 000000
- CRM JAVA WEB COMPONENTS 7.31 | SP003 | 000000
- CRM JAVA WEB COMPONENTS 7.31 | SP004 | 000000
- FBS_SOLCONF_IPC 2.0 | SP003 | 000018
- FBS_SOLCONF_IPC 2.0 | SP004 | 000005
- FBS_SOLCONF_SAP-SHRJAV 2.0 | SP004 | 000005
- FBS_SOLCONF_SHRAPP 2.0 | SP004 | 000005
- FBS_SOLCONF_SHRJAV 2.0 | SP004 | 000005
- FBS_SOLCONF_SHRWEB 2.0 | SP004 | 000005
- SAP SHARED JAVA APPLIC. 7.31 | SP003 | 000000
- SAP SHARED JAVA APPLIC. 7.31 | SP004 | 000000
- SAP SHARED JAVA COMP. 7.31 | SP003 | 000000
- SAP SHARED JAVA COMP. 7.31 | SP004 | 000000
- SAP SHARED WEB COMPONENTS 7.31 | SP003 | 000000
- SAP SHARED WEB COMPONENTS 7.31 | SP004 | 000000
Affected component
- CRM-SLC
Solution Sales Configuration
CVSS
Score: 0
PoC
Detailed vulnerability information added to RedRays Security Platform. Contact [email protected] for details.
URL
https://launchpad.support.sap.com/#/notes/2335687
