@sap/xssec

Releases91

Frequency2 weeks 5 days

Last Release about 1 year ago

XS Advanced Container Security API for node.js

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-49583 ↗	Dec 12, 2023Tuesday, 12 December 2023, 02:15	9.1 CRITICAL	—
SAP BTP Security Services Integration Library ([Node.js] @sap/xssec - versions < 3.6.0, allow under certain conditions an escalation of privileges. On successful exploitation, an unauthenticated attacker can obtain arbitrary permissions within the application.