CVE-2021-40499
Description
Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.688
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2021-40499 are affected in SAP NetWeaver Application Server ABAP 7.70 | Windows |
| Vulnerabilities CVE-2021-40499 are affected in SAP NetWeaver Application Server ABAP 7.70byd | Windows |
| Vulnerabilities CVE-2021-40499 are affected in SAP NetWeaver Application Server ABAP 7.70_pi | Windows |
| Vulnerabilities CVE-2021-40499 are affected in SAP NetWeaver and ABAP platform (ST-PI) 7.70 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234