CVE-2021-21488

🗓️ 09 Mar 2021 14:07:10Reported by sapType

Knowledge Management versions 7.01, 7.02, 7.30, 7.31, 7.40, 7.50 vulnerability allows remote code executio

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2021-21488	9 Mar 202118:51	–	circl
CNNVD	SAP NetWeaver Knowledge Management Configuration Service 代码问题漏洞	9 Mar 202100:00	–	cnnvd
CNVD	SAP NetWeaver Knowledge Management Configuration Service Insecure Deserialization Vulnerability	12 Mar 202100:00	–	cnvd
CVE	CVE-2021-21488	9 Mar 202114:07	–	cve
EUVD	EUVD-2021-8761	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP products	9 Mar 202100:00	–	ncsc
NVD	CVE-2021-21488	9 Mar 202115:15	–	nvd
OSV	CVE-2021-21488	9 Mar 202115:15	–	osv
Prion	Deserialization of untrusted data	9 Mar 202115:15	–	prion
RedhatCVE	CVE-2021-21488	22 May 202518:19	–	redhatcve

[
  {
    "product": "SAP NetWeaver Knowledge Management",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< 7.01"
      },
      {
        "status": "affected",
        "version": "< 7.02"
      },
      {
        "status": "affected",
        "version": "< 7.30"
      },
      {
        "status": "affected",
        "version": "< 7.31"
      },
      {
        "status": "affected",
        "version": "< 7.40"
      },
      {
        "status": "affected",
        "version": "< 7.50"
      }
    ]
  }
]

Source	Link
launchpad	www.launchpad.support.sap.com/
wiki	www.wiki.scn.sap.com/wiki/pages/viewpage.action

09 Mar 2021 14:07Current

6.7Medium risk

Vulners AI Score6.7

CVSS 36.5

EPSS0.01295