CVE-2021-27608

CVSS 7.5 HIGHEPSS 0.2%

An unquoted service path in SAPSetup, version - 9.0, could lead to privilege escalation during the installation process that is performed when an executable file is registered. This could further lead to complete compromise of confidentiality, Integrity and Availability.

CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Produtos afetados

SAP SE · SAP Setup

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://launchpad.support.sap.com/#/notes/3039649 https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=573801649