CVE-2021-27635

Severity Score

6.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

SAP NetWeaver AS for JAVA, versions - 7.20, 7.30, 7.31, 7.40, 7.50, allows an attacker authenticated as an administrator to connect over a network and submit a specially crafted XML file in the application because of missing XML Validation, this vulnerability enables attacker to fully compromise confidentiality by allowing them to read any file on the filesystem or fully compromise availability by causing the system to crash. The attack cannot be used to change any data so that there is no compromise as to integrity.

SAP NetWeaver AS para JAVA, versiones - 7.20, 7.30, 7.31, 7.40, 7.50, permite a un atacante autenticado como administrador conectarse a través de una red y enviar un archivo XML especialmente diseñado en la aplicación debido a que falta la comprobación XML; esta vulnerabilidad habilita al atacante comprometer completamente la confidencialidad al permitirles leer cualquier archivo en el sistema de archivos o comprometer completamente la disponibilidad al causar que el sistema se bloquee. El ataque no puede ser usado para cambiar ningún dato, de modo que no se comprometa la integridad

*Credits: N/A

CVSS Scores

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

Low

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

Single

Confidentiality

Partial

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2021-02-23 CVE Reserved
2021-06-09 CVE Published
2024-05-28 EPSS Updated
2024-08-03 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-611: Improper Restriction of XML External Entity Reference

CAPEC

References (3)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC
http://packetstormsecurity.com/files/164592/SAP-JAVA-NetWeaver-System-Connections-XML-Injection.html	2021-11-04
http://seclists.org/fulldisclosure/2021/Oct/28	2021-11-04

URL	Date	SRC
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=578125999	2021-11-04

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Sap Search vendor "Sap"		Netweaver Application Server For Java Search vendor "Sap" for product "Netweaver Application Server For Java"				7.20 Search vendor "Sap" for product "Netweaver Application Server For Java" and version "7.20"		-		Affected
Sap Search vendor "Sap"		Netweaver Application Server For Java Search vendor "Sap" for product "Netweaver Application Server For Java"				7.30 Search vendor "Sap" for product "Netweaver Application Server For Java" and version "7.30"		-		Affected
Sap Search vendor "Sap"		Netweaver Application Server For Java Search vendor "Sap" for product "Netweaver Application Server For Java"				7.31 Search vendor "Sap" for product "Netweaver Application Server For Java" and version "7.31"		-		Affected
Sap Search vendor "Sap"		Netweaver Application Server For Java Search vendor "Sap" for product "Netweaver Application Server For Java"				7.40 Search vendor "Sap" for product "Netweaver Application Server For Java" and version "7.40"		-		Affected
Sap Search vendor "Sap"		Netweaver Application Server For Java Search vendor "Sap" for product "Netweaver Application Server For Java"				7.50 Search vendor "Sap" for product "Netweaver Application Server For Java" and version "7.50"		-		Affected