CVE-2021-37531
Published at:
-
14-09-2021 02:15
Last modified:
-
02-02-2022 10:31
Total changes:
-
5
Description
Common Vulnerability Scoring System (CVSS)
Low
Attack complexity
Network
Attack vector
High
Availability
High
Confidentiality
High
Integrity
Low
Privileges required
Unchanged
Scope
None
User interaction
8.8
Base score
2.8
5.9
Exploitability score
Impact score
Verification logic
Reference
- https://launchpad.support.sap.com/#/notes/3081888
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=585106405
- 20220126 Onapsis Security Advisory 2021-0026: SAP Enterprise Portal - XSLT injection-Mailing List, Third Party Advisory
- http://packetstormsecurity.com/files/165751/SAP-Enterprise-Portal-XSLT-Injection.html
Keywords