CVE-2021-27608
CVE-2021-27608
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.5EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
14 abr 2021Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
An unquoted service path in SAPSetup, version - 9.0, could lead to privilege escalation during the installation process that is performed when an executable file is registered. This could further lead to complete compromise of confidentiality, Integrity and Availability.
CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Productos afectados
SAP SE · SAP Setup¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →