CVE-2021-27619

🗓️ 11 May 2021 14:19:33Reported by sapType

SAP Commerce (Backoffice Search) vulnerability in versions 1808, 1811, 1905, 2005, 2011 allows unauthorized access to masked attribute values resulting in information disclosure

Reporter	Title	Published	Views	Family All 8
CNNVD	SAP Commerce 安全漏洞	11 May 202100:00	–	cnnvd
CNVD	SAP Commerce Information Disclosure Vulnerability (CNVD-2021-36678)	12 May 202100:00	–	cnvd
Cvelist	CVE-2021-27619	11 May 202114:19	–	cvelist
EUVD	EUVD-2021-14366	7 Oct 202500:30	–	euvd
NVD	CVE-2021-27619	11 May 202115:15	–	nvd
OSV	CVE-2021-27619	11 May 202115:15	–	osv
Prion	Information disclosure	11 May 202115:15	–	prion
RedhatCVE	CVE-2021-27619	9 Jan 202609:21	–	redhatcve

NVD

Vulners

Node

sap commerceMatch1808

sap commerceMatch1811

sap commerceMatch1905

sap commerceMatch2005

sap commerceMatch2011

[
  {
    "product": "SAP Commerce (Backoffice Search)",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< 1808"
      },
      {
        "status": "affected",
        "version": "< 1811"
      },
      {
        "status": "affected",
        "version": "< 1905"
      },
      {
        "status": "affected",
        "version": "< 2005"
      },
      {
        "status": "affected",
        "version": "< 2011"
      }
    ]
  }
]

Source	Link
wiki	www.wiki.scn.sap.com/wiki/pages/viewpage.action
launchpad	www.launchpad.support.sap.com/

21 Nov 2024 05:58Current

6.1Medium risk

Vulners AI Score6.1

CVSS 24

CVSS 3.16.5

CVSS 36.5

EPSS0.00184