CVE-2021-33669

Summary

Under certain conditions, SAP Mobile SDK Certificate Provider allows a local unprivileged attacker to exploit an insecure temporary file storage. For a successful exploitation user interaction from another user is required and could lead to complete impact of confidentiality integrity and availability.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Mobile SDK Certificate Provider< 3.0.8affected

Weaknesses

  • Insecure Temporary File Storage

ADP Enrichment

CVE Program Container

Additional References

References