Vulnerabilities > CVE-2021-21446 - Unspecified vulnerability in SAP Netweaver Application Server Abap

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

sap

NVD

Published: 2021-01-12

Updated: 2022-10-05

Summary

SAP NetWeaver AS ABAP, versions 740, 750, 751, 752, 753, 754, 755, allows an unauthenticated attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service, this has a high impact on the availability of the service.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP Netweaver Application Server Abap 750 SAP Netweaver Application Server Abap 752 SAP Netweaver Application Server Abap 753 SAP Netweaver Application Server Abap 754 SAP Netweaver Application Server Abap 755 SAP Netweaver Application Server Abap 740 SAP Netweaver Application Server Abap 751	7

References

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=564760476
https://launchpad.support.sap.com/#/notes/3000306