When security guidelines for SAP NetWeaver Master Data Management on Windows are not reviewed thoroughly, an external operator could set custom paths in the MDS server configuration, potentially leading to an information disclosure risk due to a SMB relay attack
Reporter | Title | Published | Views | Family All 3 |
---|---|---|---|---|
Prion | Information disclosure | 12 Jan 202115:15 | β | prion |
NVD | CVE-2021-21469 | 12 Jan 202115:15 | β | nvd |
Cvelist | CVE-2021-21469 | 12 Jan 202114:44 | β | cvelist |
[
{
"product": "SAP NetWeaver Master Data Management",
"vendor": "SAP SE",
"versions": [
{
"status": "affected",
"version": "< 7.10"
},
{
"status": "affected",
"version": "< 710"
},
{
"status": "affected",
"version": "< 710.750"
}
]
}
]
Source | Link |
---|---|
launchpad | www.launchpad.support.sap.com/ |
wiki | www.wiki.scn.sap.com/wiki/pages/viewpage.action |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo