Lucene search
+L

CVE-2021-33701

🗓️ 15 Sep 2021 18:01:55Reported by sapType 
cve
 cve
🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 81 Views🌐 WEB

CVE-2021-33701 SAP S/4HANA NDZT Tool SQL Injectio

Related
Detection
Affected
Refs
Paths
Social
NVD
Vulners
Node
OR
sapdmisMatch710
sapdmisMatch2011_1_620
sapdmisMatch2011_1_640
sapdmisMatch2011_1_700
sapdmisMatch2011_1_710
sapdmisMatch2011_1_730
sapdmisMatch2011_1_731
sapdmisMatch2011_1_752
sapdmisMatch2020125
saps4coreMatch102
saps4coreMatch103
saps4coreMatch104
saps4coreMatch105
sapsapscoreMatch125
[
  {
    "product": "DMIS Mobile Plug-In",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< DMIS 2011_1_620"
      },
      {
        "status": "affected",
        "version": "< 2011_1_640"
      },
      {
        "status": "affected",
        "version": "< 2011_1_700"
      },
      {
        "status": "affected",
        "version": "< 2011_1_710"
      },
      {
        "status": "affected",
        "version": "< 2011_1_730"
      },
      {
        "status": "affected",
        "version": "< 710"
      },
      {
        "status": "affected",
        "version": "< 2011_1_731"
      },
      {
        "status": "affected",
        "version": "< 2011_1_752"
      },
      {
        "status": "affected",
        "version": "< 2020"
      }
    ]
  },
  {
    "product": "SAP S/4HANA",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< SAPSCORE 125"
      },
      {
        "status": "affected",
        "version": "< S4CORE 102"
      },
      {
        "status": "affected",
        "version": "< 102"
      },
      {
        "status": "affected",
        "version": "< 103"
      },
      {
        "status": "affected",
        "version": "< 104"
      },
      {
        "status": "affected",
        "version": "< 105"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
IT_WHERE_CLAUSEparameterIUUC_RECON_RC_COUNT_TABLE_BIGABAP code injection via unfiltered IT_WHERE_CLAUSE in remote-enabled function module IUUC_RECON_RC_COUNT_TABLE_BIGCWE-89

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 03:55Current
9.7High risk
Vulners AI Score9.7
CVSS 26.5
CVSS 3.19.1
CVSS 39.1
EPSS0.02077
81