CVE-2021-33677

Published: Jul 14, 2021Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

SAP NetWeaver ABAP Server and ABAP Platform, versions - 700, 702, 730, 731, 804, 740, 750, 784, expose functions to external which can lead to information disclosure.

Affected (16)

Products: Sap: Netweaver Abap, Netweaver Application Server Abap

Sap

2 products

Netweaver Abap

Netweaver Application Server Abap

Configuration A

16 vulnerable

Vulnerable Software	Affected Versions
Sap Netweaver Abap	Version 700
Sap Netweaver Abap	Version 702
Sap Netweaver Abap	Version 730
Sap Netweaver Abap	Version 731
Sap Netweaver Abap	Version 740
Sap Netweaver Abap	Version 750
Sap Netweaver Abap	Version 784
Sap Netweaver Abap	Version 804
Sap Netweaver Application Server Abap	Version 700
Sap Netweaver Application Server Abap	Version 702
Sap Netweaver Application Server Abap	Version 730
Sap Netweaver Application Server Abap	Version 731
Sap Netweaver Application Server Abap	Version 740
Sap Netweaver Application Server Abap	Version 750
Sap Netweaver Application Server Abap	Version 784
Sap Netweaver Application Server Abap	Version 804

References (4)

https://launchpad.support.sap.com/#/notes/3044754

Source: cna@sap.com

Permissions Required

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=580617506

Source: cna@sap.com

Vendor Advisory

https://launchpad.support.sap.com/#/notes/3044754

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions Required

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=580617506

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.