3195635 - FAQ for SAP Security Note 3145046-[CVE-2022-27656] Cross-Site Scripting (XSS) vulnerability in administration UI

Symptom

You are interested in further details related to the SAP Note SAP Note 3145046 -[CVE-2022-27656] Cross-Site Scripting (XSS) vulnerability in administration UI of SAP Webdispatcher and SAP Netweaver AS for ABAP and Java (ICM).

Which components or scenarios are affected?
Applying the Kernel Patch
Using a workaround instead of a Kernel Patch

Environment

Operating System independent
SAP NetWeaver
ABAP Platform
SAP Web Dispatcher

Keywords

stored XSS, CSS, CVE-2022-27656, Web admin, Administration UI , KBA , BC-CST-WDP , Web Dispatcher , BC-CST-IC , Internet Communication Manager , How To

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.