CVE-2021-21476

🗓️ 09 Feb 2021 20:44:32Reported by sapType

SAP UI5 versions vulnerable to Reverse Tabnabbing attac

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2021-21476	10 Feb 202100:40	–	circl
CNNVD	SAP UI5 输入验证错误漏洞	9 Feb 202100:00	–	cnnvd
CNVD	SAP UI5 Open Redirect Vulnerability	26 Feb 202100:00	–	cnvd
CVE	CVE-2021-21476	9 Feb 202120:44	–	cve
EUVD	EUVD-2021-8750	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP products	9 Feb 202100:00	–	ncsc
NVD	CVE-2021-21476	9 Feb 202121:15	–	nvd
OSV	CVE-2021-21476	9 Feb 202121:15	–	osv
Prion	Design/Logic Flaw	9 Feb 202121:15	–	prion
RedhatCVE	CVE-2021-21476	22 May 202518:18	–	redhatcve

[
  {
    "product": "SAP UI5",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< 1.38.49"
      },
      {
        "status": "affected",
        "version": "< 1.52.49"
      },
      {
        "status": "affected",
        "version": "< 1.60.34"
      },
      {
        "status": "affected",
        "version": "< 1.71.31"
      },
      {
        "status": "affected",
        "version": "< 1.78.18"
      },
      {
        "status": "affected",
        "version": "< 1.84.5"
      },
      {
        "status": "affected",
        "version": "< 1.85.4"
      },
      {
        "status": "affected",
        "version": "< 1.86.1"
      }
    ]
  }
]

Source	Link
launchpad	www.launchpad.support.sap.com/
wiki	www.wiki.scn.sap.com/wiki/pages/viewpage.action

03 Mar 2021 15:55Current

6.5Medium risk

Vulners AI Score6.5

CVSS 34.7

EPSS0.00816