CVE-2021-21448 is a vulnerability in SAP Graphical User Interface
Published on January 12, 2021
SAP GUI for Windows, version - 7.60, allows an attacker to spoof logon credentials for Application Server ABAP backend systems in the client PCs memory. Under certain conditions the attacker can access information which would otherwise be restricted. The exploit can only be executed locally on the client PC and not via Network and the attacker needs at least user authorization of the Operating System user of the victim.
Products Associated with CVE-2021-21448
Want to know whenever a new CVE is published for SAP Graphical User Interface? stack.watch will email you.
Affected Versions
SAP SE SAP GUI FOR WINDOWS Version < 7.60 is affected by CVE-2021-21448Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.