CVE-2021-27604

Summary

In order to prevent XML External Entity vulnerability in SAP NetWeaver ABAP Server and ABAP Platform (Process Integration - Enterprise Service Repository JAVA Mappings), versions - 7.10, 7.20, 7.30, 7.31, 7.40, 7.50, SAP recommends to refer this note.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Process Integration (Enterprise Service Repository JAVA Mappings)< 7.10affected
SAP SESAP Process Integration (Enterprise Service Repository JAVA Mappings)< 7.20affected
SAP SESAP Process Integration (Enterprise Service Repository JAVA Mappings)< 7.30affected
SAP SESAP Process Integration (Enterprise Service Repository JAVA Mappings)< 7.31affected
SAP SESAP Process Integration (Enterprise Service Repository JAVA Mappings)< 7.40affected
SAP SESAP Process Integration (Enterprise Service Repository JAVA Mappings)< 7.50affected

Weaknesses

  • CWE-611: XML External Entity (CWE-611)

ADP Enrichment

CVE Program Container

Additional References

References