CVE-2021-33701
CVE-2021-33701 affects SAP NetWeaver/DMIS components (e.g., SAP DMIS 2011_1_731 SP0013) via a remote SQL injection in the NDZT tool used by S/4HANA and the DMIS mobile plug-in. The root cause is an injection in the IUUC_RECON_RC_COUNT_TABLE_BIG/related query surface, enabling an attacker with hig...