CVE-2021-21491

🗓️ 10 Mar 2021 14:11:46Reported by sapType

SAP Netweaver Application Server Java Vulnerabilit

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2021-21491	10 Mar 202118:53	–	circl
CNNVD	SAP Business Objects Business Intelligence Platform 输入验证错误漏洞	9 Mar 202100:00	–	cnnvd
CNVD	SAP Netweaver Application Server Java Reverse Tag Phishing Vulnerability	11 Mar 202100:00	–	cnvd
CVE	CVE-2021-21491	10 Mar 202114:11	–	cve
EUVD	EUVD-2021-8764	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in SAP products	9 Mar 202100:00	–	ncsc
NVD	CVE-2021-21491	10 Mar 202115:15	–	nvd
OSV	CVE-2021-21491	10 Mar 202115:15	–	osv
Prion	Design/Logic Flaw	10 Mar 202115:15	–	prion
RedhatCVE	CVE-2021-21491	22 May 202519:10	–	redhatcve

[
  {
    "product": "SAP NetWeaver Application Server Java (Applications based on Web Dynpro Java)",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "< 7.00"
      },
      {
        "status": "affected",
        "version": "< 7.10"
      },
      {
        "status": "affected",
        "version": "< 7.11"
      },
      {
        "status": "affected",
        "version": "< 7.20"
      },
      {
        "status": "affected",
        "version": "< 7.30"
      },
      {
        "status": "affected",
        "version": "< 731"
      },
      {
        "status": "affected",
        "version": "< 7.40"
      },
      {
        "status": "affected",
        "version": "< 7.50"
      }
    ]
  }
]

Source	Link
launchpad	www.launchpad.support.sap.com/
wiki	www.wiki.scn.sap.com/wiki/pages/viewpage.action

10 Mar 2021 14:11Current

6.4Medium risk

Vulners AI Score6.4

CVSS 34.7

EPSS0.00666