CVE-2021-27624

🗓️ 09 Jun 2021 00:00:00Reported by sapType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 67 Views

SAP Internet Graphics Service version 7.20, 7.53, 7.81, allows unauthenticated attacker to trigger memory corruption, causing system crash and unavailability

Reporter	Title	Published	Views	Family All 11
GithubExploit	Exploit for Missing Authentication for Critical Function in Freeswitch	28 Nov 202113:12	–	githubexploit
CNNVD	SAP Internet Graphics Server 缓冲区错误漏洞	8 Jun 202100:00	–	cnnvd
CNVD	SAP Internet Graphics Service memory corruption vulnerability (CNVD-2021-42427)	11 Jun 202100:00	–	cnvd
Cvelist	CVE-2021-27624	9 Jun 202100:00	–	cvelist
EUVD	EUVD-2021-14371	7 Oct 202500:30	–	euvd
NCSC	Vulnerabilities fixed in SAP Netweaver	8 Jun 202100:00	–	ncsc
NVD	CVE-2021-27624	9 Jun 202114:15	–	nvd
OSV	CVE-2021-27624	9 Jun 202114:15	–	osv
Prion	Input validation	9 Jun 202114:15	–	prion
Positive Technologies	PT-2021-17559 · Sap · Sap Internet Graphics Server	9 Jun 202100:00	–	ptsecurity

NVD

Vulners

Node

sap netweaver_as_internet_graphics_serverMatch7.20

sap netweaver_as_internet_graphics_serverMatch7.20ex2

sap netweaver_as_internet_graphics_serverMatch7.20ext

sap netweaver_as_internet_graphics_serverMatch7.53

sap netweaver_as_internet_graphics_serverMatch7.81

[
  {
    "vendor": "SAP SE",
    "product": "SAP Internet Graphics Service",
    "versions": [
      {
        "version": "< 7.20",
        "status": "affected"
      },
      {
        "version": "< 7.20EXT",
        "status": "affected"
      },
      {
        "version": "< 7.53",
        "status": "affected"
      },
      {
        "version": "< 7.20_EX2",
        "status": "affected"
      },
      {
        "version": "< 7.81",
        "status": "affected"
      }
    ]
  }
]

Source	Link
launchpad	www.launchpad.support.sap.com/
wiki	www.wiki.scn.sap.com/wiki/pages/viewpage.action

17 Jun 2026 03:45Current

5.9Medium risk

Vulners AI Score5.9

CVSS 24.3

CVSS 3.15.9

CVSS 35.9

EPSS0.01208

CWE-787