CVE-2021-40499

EPSS 1.1%

Vexday Risk Score

3Bajo

Decisión SSVC (CISA)

Track

Sin señal de explotación → monitorear

CVSS —EPSS 1.1%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

12 oct 2021Publicada en NVD

Recomendación: Monitorear — sin señal de explotación por ahora.

Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.

Productos afectados

SAP SE · SAP NetWeaver Application Server for ABAP (SAP Cloud Print Manager and SAPSprint)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://launchpad.support.sap.com/#/notes/3100882 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=587169983