CVE-2021-33707

SAP NetWeaver Knowledge Management allows remote attackers to redirect users to arbitrary websites and conduct phishing attacks via a URL stored in a component. This could enable the attacker to compromise the user's confidentiality and integrity.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:sap:netweaver_knowledge_management:7.30:*:*:*:*:*:*:*
cpe:2.3:a:sap:netweaver_knowledge_management:7.31:*:*:*:*:*:*:*
cpe:2.3:a:sap:netweaver_knowledge_management:7.40:*:*:*:*:*:*:*
cpe:2.3:a:sap:netweaver_knowledge_management:7.50:*:*:*:*:*:*:*

Information

Published : 2021-08-10 08:15

Updated : 2022-01-28 12:59


NVD link : CVE-2021-33707

Mitre link : CVE-2021-33707


JSON object : View

CWE
CWE-601

URL Redirection to Untrusted Site ('Open Redirect')

Advertisement

dedicated server usa

Products Affected

sap

  • netweaver_knowledge_management