CyberSec.Space Logo
CVEブラウザに戻る

CVE-2021-40499

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0780%
EPSS Percentile20.44th
Published2021年10月12日
Last Modified2024年11月21日

Vulnerability Description

Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.

Affected Platforms (CPE)

📦
Sap

Netweaver Application Server Abap

= 7.70
📦
Sap

Netweaver Application Server Abap

= 7.70_pi
📦
Sap

Netweaver Application Server Abap

= 7.70byd

References & Advisories

🔗 https://launchpad.support.sap.com/#/notes/3100882
🔗 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=587169983
🔗 https://launchpad.support.sap.com/#/notes/3100882
🔗 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=587169983

関連する脆弱性情報

CVE-2026-236878.8

SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated attacker with normal privileges to obtain a valid ...

CVE-2020-62968.8

SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 753, 755, allows an at...

CVE-2015-22827.5

Stack-based buffer overflow in the LZC decompression implementation (CsObjectInt::CsDecomprLZC function in vpa106cslzc.cpp) in SAP...

CVE-2020-63187.2

A Remote Code Execution vulnerability exists in the SAP NetWeaver (ABAP Server, up to release 7.40) and ABAP Platform (> release 7...