Vulnerabilities > SAP > Manufacturing Integration AND Intelligence > 15.1

DATE	CVE	VULNERABILITY TITLE	RISK
2021-03-09	CVE-2021-21480	Code Injection vulnerability in SAP Manufacturing Integration and Intelligence SAP MII allows users to create dashboards and save them as JSP through the SSCE (Self Service Composition Environment). network low complexity sap CWE-94 critical	9.0
2019-02-15	CVE-2019-0267	Cross-Site Request Forgery (CSRF) vulnerability in SAP Manufacturing Integration and Intelligence 15.0/15.1/15.2 SAP Manufacturing Integration and Intelligence, versions 15.0, 15.1 and 15.2, (Illuminator Servlet) currently does not provide Anti-XSRF tokens. network sap CWE-352	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.