CVE-2021-21465 – The BW Database Interface allows an attacker with low privileges to execute any crafted da …

12 January 2021

Vuln ID: CVE-2021-21465

Published: 2021-01-12 15:15:15Z

Description: The BW Database Interface allows an attacker with low privileges to execute any crafted database queries, exposing the backend database. An attacker can include their own SQL commands which the database will execute without properly sanitizing the untrusted data leading to SQL injection vulnerability which can fully compromise the affected SAP system.

Source: NVD.NIST.GOV

Date:

12 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Ransomware in Q1 2024: Frequency, size of payments trending downwards, SMBs beware!19 April 2024
How To Report Online Scams In The UK: Protecting Yourself and Stopping Fraudsters19 April 2024
Microsoft reminder: Support for Office 2016 and 2019 ends next year19 April 2024
Google consolidates AI teams into DeepMind to scale capacity19 April 2024
How ADR – application detection and response – can become the ‘EDR for apps’19 April 2024