Vulnerabilities > CVE-2021-33699 - Unspecified vulnerability in SAP Fiori Client 3.2

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

low complexity

sap

NVD

Published: 2021-08-10

Updated: 2021-08-17

Summary

Task Hijacking is a vulnerability that affects the applications running on Android devices due to a misconfiguration in their AndroidManifest.xml with their Task Control features. This allows an unauthorized attacker or malware to takeover legitimate apps and to steal user's sensitive information.

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP Fiori Client 3.2	1

References

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=582222806
https://launchpad.support.sap.com/#/notes/3067219