VDB

CVE-2021-38175

CVE-2021-38175 PUBLISHED CVSS 6.5 MEDIUM

SAP Analysis for Microsoft Office - version 2.8, allows an attacker with high privileges to read sensitive data over the network, and gather or change information in the current system without user interaction. The attack would not lead to an impact on the availability of the system, but there would be an impact on integrity and confidentiality.

EPSS 0.23% · 46.1th percentile

Risk Scores

CVSS 3.0
6.5
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
EPSS Score
0.23%
46.1th percentile

Affected Products

VendorProductVersions
sapanalysis_for_microsoft_office2.8
SAP SESAP Analysis for Microsoft Office< 2.8

Timeline

  • Sep 14, 2021 CVE Published
  • Sep 15, 2021 EPSS Score
  • Nov 11, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Jan 8, 2022 EPSS Score
  • Mar 6, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 3, 2022 EPSS Score
  • Jun 29, 2022 EPSS Score
  • Aug 27, 2022 EPSS Score
  • Oct 23, 2022 EPSS Score
  • Dec 20, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›