CVE-2021-21478

🗓️ 09 Feb 2021 20:44:40Reported by sapType

SAP Web Dynpro ABAP allows redirection to malicious site

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2021-21478	10 Feb 202100:40	–	circl
CNNVD	SAP Web Dynpro ABAP 输入验证错误漏洞	9 Feb 202100:00	–	cnnvd
CNVD	SAP Web Dynpro ABAP Open Redirect Vulnerability	26 Feb 202100:00	–	cnvd
Cvelist	CVE-2021-21478	9 Feb 202120:44	–	cvelist
EUVD	EUVD-2021-8752	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP products	9 Feb 202100:00	–	ncsc
NVD	CVE-2021-21478	9 Feb 202121:15	–	nvd
Prion	Design/Logic Flaw	9 Feb 202121:15	–	prion
RedhatCVE	CVE-2021-21478	22 May 202519:10	–	redhatcve

NVD

Vulners

Node

sap web_dynpro_abapMatch-

[
  {
    "product": "SAP NetWeaver AS ABAP (Web Dynpro ABAP)",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< SAP_UI 750"
      },
      {
        "status": "affected",
        "version": "< 752"
      },
      {
        "status": "affected",
        "version": "< 753"
      },
      {
        "status": "affected",
        "version": "< 754"
      },
      {
        "status": "affected",
        "version": "< 755"
      },
      {
        "status": "affected",
        "version": "< and SAP_BASIS 700"
      },
      {
        "status": "affected",
        "version": "< 701"
      },
      {
        "status": "affected",
        "version": "< 702"
      },
      {
        "status": "affected",
        "version": "< 731"
      },
      {
        "status": "affected",
        "version": "< 804"
      }
    ]
  }
]

Source	Link
launchpad	www.launchpad.support.sap.com/
wiki	www.wiki.scn.sap.com/wiki/pages/viewpage.action

21 Nov 2024 05:48Current

6.2Medium risk

Vulners AI Score6.2

CVSS 25.8

CVSS 3.16.1

CVSS 34.7

EPSS0.00169

CWE-601