VDB
CVE-2021-38175
CVE-2021-38175
PUBLISHED
CVSS 6.5 MEDIUM
SAP Analysis for Microsoft Office - version 2.8, allows an attacker with high privileges to read sensitive data over the network, and gather or change information in the current system without user interaction. The attack would not lead to an impact on the availability of the system, but there would be an impact on integrity and confidentiality.
EPSS 0.23% · 46.1th percentile
Risk Scores
CVSS 3.0
6.5
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
EPSS Score
0.23%
46.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| sap | analysis_for_microsoft_office | 2.8 |
| SAP SE | SAP Analysis for Microsoft Office | < 2.8 |
Exploit Intelligence
Timeline
- Sep 14, 2021 CVE Published
- Sep 15, 2021 EPSS Score
- Nov 11, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Jan 8, 2022 EPSS Score
- Mar 6, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 3, 2022 EPSS Score
- Jun 29, 2022 EPSS Score
- Aug 27, 2022 EPSS Score
- Oct 23, 2022 EPSS Score
- Dec 20, 2022 EPSS Score