CyberSec.Space Logo
Back to CVE Browser

CVE-2021-40499

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0780%
EPSS Percentile20.44th
PublishedOct 12, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.

Affected Platforms (CPE)

πŸ“¦
Sap

Netweaver Application Server Abap

= 7.70
πŸ“¦
Sap

Netweaver Application Server Abap

= 7.70_pi
πŸ“¦
Sap

Netweaver Application Server Abap

= 7.70byd

References & Advisories

πŸ”— https://launchpad.support.sap.com/#/notes/3100882
πŸ”— https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=587169983
πŸ”— https://launchpad.support.sap.com/#/notes/3100882
πŸ”— https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=587169983

Related Vulnerabilities

CVE-2026-236878.8

SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated attacker with normal privileges to obtain a valid ...

CVE-2020-62968.8

SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 753, 755, allows an at...

CVE-2015-22827.5

Stack-based buffer overflow in the LZC decompression implementation (CsObjectInt::CsDecomprLZC function in vpa106cslzc.cpp) in SAP...

CVE-2020-63187.2

A Remote Code Execution vulnerability exists in the SAP NetWeaver (ABAP Server, up to release 7.40) and ABAP Platform (> release 7...