XSS in SAP AIF UI allows remote image injection
CVE-2023-29110 Published on April 11, 2023

Code Injection vulnerability in SAP Application Interface Framework (Message Dashboard)
The SAP Application Interface (Message Dashboard) - versions AIF 703, AIFX 702, S4CORE 100, 101, SAP_BASIS 755, 756, SAP_ABA 75C, 75D, 75E, application allows the usage HTML tags. An authorized attacker can use some of the basic HTML codes such as heading, basic formatting and lists, then an attacker can inject images from the foreign domains. After successful exploitations, an attacker can cause limited impact on the confidentiality and integrity of the application.

NVD

Vulnerability Analysis

CVE-2023-29110 is exploitable with network access, requires user interaction and a small amount of user privileges. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to have a small impact on confidentiality and integrity, and no impact on availability.

Attack Vector:

NETWORK

Attack Complexity:

HIGH

Privileges Required:

LOW

User Interaction:

REQUIRED

Scope:

UNCHANGED

Confidentiality Impact:

LOW

Integrity Impact:

LOW

Availability Impact:

NONE

Weakness Type

What is a Basic XSS Vulnerability?

The software receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special characters such as "<", ">", and "&" that could be interpreted as web-scripting elements when they are sent to a downstream component that processes web pages. This may allow such characters to be treated as control characters, which are executed client-side in the context of the user's session. Although this can be classified as an injection problem, the more pertinent issue is the improper conversion of such special characters to respective context-appropriate entities before displaying them to the user.

CVE-2023-29110 has been classified to as a Basic XSS vulnerability or weakness.

Products Associated with CVE-2023-29110

Want to know whenever a new CVE is published for SAP products? stack.watch will email you.

SAP Abap Platform

SAP Basis

SAP S4core

SAP Application Interface Framework

Affected Versions

SAP Application Interface Framework (Message Dashboard):

Version AIF 703 is affected.
Version AIFX 702 is affected.
Version S4CORE 100 is affected.
Version S4CORE 101 is affected.
Version SAP_BASIS 755 is affected.
Version SAP_BASIS 756 is affected.
Version SAP_ABA 75C is affected.
Version SAP_ABA 75D is affected.
Version SAP_ABA 75E is affected.

Exploit Probability

EPSS

0.42%

Percentile

61.78%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.