CVE-2014-4159
Open redirect vulnerability in in la/umTestSSO.jsp in SAP Supplier Relationship Management (SRM) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0029 (0.3%)
Percentil: 51.9%
EPSS: 2026-05-06
Afecta
sap:supplier_relationship_managementDescripción técnica
Open redirect vulnerability in in la/umTestSSO.jsp in SAP Supplier Relationship Management (SRM) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter.
Publicada: 13/6/2014, 14:55:17
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://blog.emaze.net/2014/05/sap-multiple-vulnerabilities.html
- http://scn.sap.com/docs/DOC-8218
- http://www.securityfocus.com/bid/67997
- https://service.sap.com/sap/support/notes/1946420
- http://blog.emaze.net/2014/05/sap-multiple-vulnerabilities.html
- http://scn.sap.com/docs/DOC-8218
- http://www.securityfocus.com/bid/67997
- https://service.sap.com/sap/support/notes/1946420