Lucene search

[email protected]CVE-2021-38176

HistorySep 14, 2021 - 12:15 p.m.

CVE-2021-38176

2021-09-1412:15:11

CWE-89

[email protected]

web.nvd.nist.gov

cve-2021-38176

input sanitization

remote code execution

abap code injection

confidentiality compromise

integrity compromise

availability compromise

nvd

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.9%

JSON

Due to improper input sanitization, an authenticated user with certain specific privileges can remotely call NZDT function modules listed in Solution Section to execute manipulated query or inject ABAP code to gain access to Backend Database. On successful exploitation the threat actor could completely compromise confidentiality, integrity, and availability of the system.

Affected configurations

NVD

Node

saplandscape_transformationMatch2.0

saplandscape_transformation_replication_serverMatch1.0s\/4hana

saplandscape_transformation_replication_serverMatch2.0

saplandscape_transformation_replication_serverMatch3.0

saps\/4hanaMatch1511

saps\/4hanaMatch1610

saps\/4hanaMatch1709

saps\/4hanaMatch1809

saps\/4hanaMatch1909

saps\/4hanaMatch2020

saps\/4hanaMatch2021

saptest_data_migration_serverMatch4.0

CPENameOperatorVersion
sap:landscape_transformationsap landscape transformationeq2.0
sap:landscape_transformation_replication_serversap landscape transformation replication servereq1.0
sap:landscape_transformation_replication_serversap landscape transformation replication servereq2.0
sap:landscape_transformation_replication_serversap landscape transformation replication servereq3.0
sap:s\/4hanasap s/4hanaeq1511
sap:s\/4hanasap s/4hanaeq1610
sap:s\/4hanasap s/4hanaeq1709
sap:s\/4hanasap s/4hanaeq1809
sap:s\/4hanasap s/4hanaeq1909
sap:s\/4hanasap s/4hanaeq2020

CPE	Name	Operator	Version
sap:landscape_transformation	sap landscape transformation	eq	2.0
sap:landscape_transformation_replication_server	sap landscape transformation replication server	eq	1.0
sap:landscape_transformation_replication_server	sap landscape transformation replication server	eq	2.0
sap:landscape_transformation_replication_server	sap landscape transformation replication server	eq	3.0
sap:s\/4hana	sap s/4hana	eq	1511
sap:s\/4hana	sap s/4hana	eq	1610
sap:s\/4hana	sap s/4hana	eq	1709
sap:s\/4hana	sap s/4hana	eq	1809
sap:s\/4hana	sap s/4hana	eq	1909
sap:s\/4hana	sap s/4hana	eq	2020

Rows per page:

1-10 of 121

CNA Affected

[
  {
    "product": "SAP S/4HANA",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< 1511"
      },
      {
        "status": "affected",
        "version": "< 1610"
      },
      {
        "status": "affected",
        "version": "< 1709"
      },
      {
        "status": "affected",
        "version": "< 1809"
      },
      {
        "status": "affected",
        "version": "< 1909"
      },
      {
        "status": "affected",
        "version": "< 2020"
      },
      {
        "status": "affected",
        "version": "< 2021"
      }
    ]
  },
  {
    "product": "SAP LT Replication Server",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< 2.0"
      },
      {
        "status": "affected",
        "version": "< 3.0"
      }
    ]
  },
  {
    "product": "SAP LTRS for S/4HANA",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< 1.0"
      }
    ]
  },
  {
    "product": "SAP Test Data Migration Server",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< 4.0"
      }
    ]
  },
  {
    "product": "SAP Landscape Transformation",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< 2.0"
      }
    ]
  }
]

References

launchpad.support.sap.com/#/notes/3089831

wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=585106405

Social References

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.9%

JSON

Related for CVE-2021-38176

prion1 nvd1 cvelist1