VYPR
Unrated severityNVD Advisory· Published Feb 9, 2021· Updated Aug 3, 2024

CVE-2021-21476

CVE-2021-21476

Description

SAP UI5 versions before 1.38.49, 1.52.49, 1.60.34, 1.71.31, 1.78.18, 1.84.5, 1.85.4, 1.86.1 allows an unauthenticated attacker to redirect users to a malicious site due to Reverse Tabnabbing vulnerabilities.

Affected products

2
  • SAP/UI5llm-fuzzy
    Range: < 1.38.49, 1.52.49, 1.60.34, 1.71.31, 1.78.18, 1.84.5, 1.85.4, 1.86.1
  • SAP SE/SAP UI5v5
    Range: < 1.38.49

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.