← back
CVE-2021-27611

CVE-2021-27611

CVSS 8.2 HIGHEPSS 0.3%
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.2EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
11 May 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
SAP NetWeaver AS ABAP, versions - 700, 701, 702, 730, 731, allow a high privileged attacker to inject malicious code by executing an ABAP report when the attacker has access to the local SAP system. The attacker could then get access to data, overwrite them, or execute a denial of service.
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →