VDB

CVE-2021-40499

CVE-2021-40499 PUBLISHED CVSS 9.800000190734863 CRITICAL

Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.

EPSS 0.69% · 72.2th percentile

Risk Scores

CVSS 3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.69%
72.2th percentile

Affected Products

VendorProductVersions
sapnetweaver_application_server_abap7.70, 7.70_pi, *
SAP SESAP NetWeaver Application Server for ABAP (SAP Cloud Print Manager and SAPSprint)< 7.70, < 7.70 PI, < 7.70BYD

Exploit Intelligence

Timeline

  • Oct 12, 2021 CVE Published
  • Oct 13, 2021 EPSS Score
  • Dec 9, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 3, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 27, 2022 EPSS Score
  • Jul 24, 2022 EPSS Score
  • Sep 18, 2022 EPSS Score
  • Nov 14, 2022 EPSS Score
  • Jan 9, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›