CVE-2021-38178
Severity Score
8.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The software logistics system of SAP NetWeaver AS ABAP and ABAP Platform versions - 700, 701, 702, 710, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, enables a malicious user to transfer ABAP code artifacts or content, by-passing the established quality gates. By this vulnerability malicious code can reach quality and production, and can compromise the confidentiality, integrity, and availability of the system and its data.
El sistema de logística de software de SAP NetWeaver AS ABAP y ABAP Platform versiones - 700, 701, 702, 710, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, permite a un usuario malicioso transferir artefactos o contenido de código ABAP, omitiendo las puertas de calidad establecidas. Mediante esta vulnerabilidad el código malicioso puede llegar a calidad y producción, y puede comprometer la confidencialidad, integridad y disponibilidad del sistema y sus datos
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2021-08-07 CVE Reserved
- 2021-10-12 CVE Published
- 2023-05-05 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=587169983 | 2022-10-06 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 700 Search vendor "Sap" for product "Netweaver Abap" and version "700" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 701 Search vendor "Sap" for product "Netweaver Abap" and version "701" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 702 Search vendor "Sap" for product "Netweaver Abap" and version "702" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 710 Search vendor "Sap" for product "Netweaver Abap" and version "710" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 730 Search vendor "Sap" for product "Netweaver Abap" and version "730" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 731 Search vendor "Sap" for product "Netweaver Abap" and version "731" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 740 Search vendor "Sap" for product "Netweaver Abap" and version "740" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 750 Search vendor "Sap" for product "Netweaver Abap" and version "750" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 751 Search vendor "Sap" for product "Netweaver Abap" and version "751" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 752 Search vendor "Sap" for product "Netweaver Abap" and version "752" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 753 Search vendor "Sap" for product "Netweaver Abap" and version "753" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 754 Search vendor "Sap" for product "Netweaver Abap" and version "754" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 755 Search vendor "Sap" for product "Netweaver Abap" and version "755" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Abap Search vendor "Sap" for product "Netweaver Abap" | 756 Search vendor "Sap" for product "Netweaver Abap" and version "756" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 700 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "700" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 701 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "701" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 702 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "702" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 710 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "710" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 730 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "730" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 731 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "731" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 740 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "740" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 750 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "750" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 751 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "751" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 752 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "752" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 753 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "753" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 754 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "754" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 755 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "755" | - |
Affected
| ||||||
| Sap Search vendor "Sap" | Netweaver Application Server Abap Search vendor "Sap" for product "Netweaver Application Server Abap" | 756 Search vendor "Sap" for product "Netweaver Application Server Abap" and version "756" | - |
Affected
| ||||||