Description

The software logistics system of SAP NetWeaver AS ABAP and ABAP Platform versions - 700, 701, 702, 710, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, enables a malicious user to transfer ABAP code artifacts or content, by-passing the established quality gates. By this vulnerability malicious code can reach quality and production, and can compromise the confidentiality, integrity, and availability of the system and its data.

Related CPE's

a

sap

netweaver_abap

14

a

sap

netweaver_application_server_abap

14

References

https://launchpad.support.sap.com/#/notes/3097887

Permissions Required

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=587169983

Vendor Advisory

Weaknesses

[email protected]

Primary
NVD-CWE-Other

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-10-12T15:15:08.477

3 years ago

Last modified

2022-10-06T15:20:09.903

2 years ago