CVE-2021-33676

Summary

A missing authority check in SAP CRM, versions - 700, 701, 702, 712, 713, 714, could be leveraged by an attacker with high privileges to compromise confidentiality, integrity, or availability of the system.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP CRM< 700affected
SAP SESAP CRM< 701affected
SAP SESAP CRM< 702affected
SAP SESAP CRM< 712affected
SAP SESAP CRM< 713affected
SAP SESAP CRM< 714affected

Weaknesses

  • Missing Authority Check

ADP Enrichment

CVE Program Container

Additional References

References