CVE-2021-33670 is a vulnerability in SAP Netweaver Application Server Java
Published on July 14, 2021

SAP NetWeaver AS for Java (Http Service Monitoring Filter), versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows an attacker to send multiple HTTP requests with different method types thereby crashing the filter and making the HTTP server unavailable to other legitimate users leading to denial of service vulnerability.

NVD

Products Associated with CVE-2021-33670

Want to know whenever a new CVE is published for SAP Netweaver Application Server Java? stack.watch will email you.

SAP Netweaver Application Server Java

Affected Versions

SAP SE SAP NetWeaver AS for Java (Http Service):

Version < 7.10 is affected.
Version < 7.11 is affected.
Version < 7.20 is affected.
Version < 7.30 is affected.
Version < 7.31 is affected.
Version < 7.40 is affected.
Version < 7.50 is affected.

Exploit Probability

EPSS

5.56%

Percentile

90.16%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-33670 is a vulnerability in SAP Netweaver Application Server JavaPublished on July 14, 2021

Products Associated with CVE-2021-33670

Affected Versions

Exploit Probability

CVE-2021-33670 is a vulnerability in SAP Netweaver Application Server Java
Published on July 14, 2021