MEDIUMπŸ‡΅πŸ‡± Wersja polska

CVE-2021-33693

CVSS 6.8v3.1pub. 2021-09-15upd. 2024-11-21

SAP Cloud Connector, version - 2.0, allows an authenticated administrator to modify a configuration file to inject malicious codes that could potentially lead to OS command execution.

CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  • Sap Cloud Connector

    APP
    Sap
    2.0
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2021-33695CRITICAL9.1ten sam produkt

Potentially, SAP Cloud Connector, version - 2.0 communication with the backend is accepted without sufficient ...

CVE-2019-0247CRITICAL9.8ten sam produkt

SAP Cloud Connector, before version 2.11.3, allows an attacker to inject code that can be executed by the appl...

CVE-2019-0246CRITICAL9.8ten sam produkt

SAP Cloud Connector, before version 2.11.3, does not perform any authentication checks for functionalities tha...

CVE-2024-25642HIGH7.4ten sam produkt

Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the g...

CVE-2021-33692HIGH7.5ten sam produkt

SAP Cloud Connector, version - 2.0, allows the upload of zip files as backup. This backup file can be tricked ...

CVE-2021-33693 β€” Sap β€” Cloud Connector β€” MEDIUM β€” CVSS 6.8 | CVEbaza.pl