8.8

CVE-2021-38178

The software logistics system of SAP NetWeaver AS ABAP and ABAP Platform versions - 700, 701, 702, 710, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, enables a malicious user to transfer ABAP code artifacts or content, by-passing the established quality gates. By this vulnerability malicious code can reach quality and production, and can compromise the confidentiality, integrity, and availability of the system and its data.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SAPNetweaver Abap Version700
SAPNetweaver Abap Version701
SAPNetweaver Abap Version702
SAPNetweaver Abap Version710
SAPNetweaver Abap Version730
SAPNetweaver Abap Version731
SAPNetweaver Abap Version740
SAPNetweaver Abap Version750
SAPNetweaver Abap Version751
SAPNetweaver Abap Version752
SAPNetweaver Abap Version753
SAPNetweaver Abap Version754
SAPNetweaver Abap Version755
SAPNetweaver Abap Version756
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.45% 0.625
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.8 2.8 5.9
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 6.5 8 6.4
AV:N/AC:L/Au:S/C:P/I:P/A:P