0.004 Low
EPSS
Percentile
73.5%
It is possible for attacker to inject and execute java expression and compromising the availability and integrity of the system.
The issue was fixed on 0.0.19 version
github.com/SAP/scimono/commit/413b5d75fa94e77876af0e47be76475a23745b80
github.com/SAP/scimono/security/advisories/GHSA-29q4-gxjq-rx5c
mvnrepository.com/artifact/com.sap.scimono/scimono-server/0.0.19
nvd.nist.gov/vuln/detail/CVE-2021-21479