CVE-2021-37535 is a vulnerability in SAP Netweaver Application Server Java
Published on September 14, 2021

SAP NetWeaver Application Server Java (JMS Connector Service) - versions 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not perform necessary authorization checks for user privileges.

NVD

Products Associated with CVE-2021-37535

Want to know whenever a new CVE is published for SAP Netweaver Application Server Java? stack.watch will email you.

SAP Netweaver Application Server Java

Affected Versions

SAP SE SAP NetWeaver Application Server Java (JMS Connector Service):

Version < 7.11 is affected.
Version < 7.20 is affected.
Version < 7.30 is affected.
Version < 7.31 is affected.
Version < 7.40 is affected.
Version < 7.50 is affected.

Exploit Probability

EPSS

0.34%

Percentile

56.15%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-37535 is a vulnerability in SAP Netweaver Application Server JavaPublished on September 14, 2021

Products Associated with CVE-2021-37535

Affected Versions

Exploit Probability

CVE-2021-37535 is a vulnerability in SAP Netweaver Application Server Java
Published on September 14, 2021