CVE-2021-40495
N/A
N/A
Summary
There are multiple Denial-of Service vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 740, 750, 751, 752, 753, 754, 755. An unauthorized attacker can use the public SICF service /sap/public/bc/abap to reduce the performance of SAP NetWeaver Application Server ABAP and ABAP Platform.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| SAP SE | SAP NetWeaver AS ABAP and ABAP Platform | < 740 | affected |
| SAP SE | SAP NetWeaver AS ABAP and ABAP Platform | < 750 | affected |
| SAP SE | SAP NetWeaver AS ABAP and ABAP Platform | < 751 | affected |
| SAP SE | SAP NetWeaver AS ABAP and ABAP Platform | < 752 | affected |
| SAP SE | SAP NetWeaver AS ABAP and ABAP Platform | < 753 | affected |
| SAP SE | SAP NetWeaver AS ABAP and ABAP Platform | < 754 | affected |
| SAP SE | SAP NetWeaver AS ABAP and ABAP Platform | < 755 | affected |
Weaknesses
- Denial of Service
ADP Enrichment
CVE Program Container
Additional References
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=587169983
- https://launchpad.support.sap.com/#/notes/3099011
References
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=587169983
- https://launchpad.support.sap.com/#/notes/3099011
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.