Unrated severityNVD Advisory· Published Sep 14, 2021· Updated Aug 4, 2024
CVE-2021-38150
CVE-2021-38150
Description
When an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will allow him to read extremely sensitive data, such as credentials. This would allow the attacker to compromise the corresponding backend for which the credentials are valid.
Affected products
2- Range: 7.0, 7.70
- SAP SE/SAP Business Clientv5Range: < 7.0
Patches
Vulnerability mechanics
References
2- launchpad.support.sap.commitrex_refsource_MISC
- wiki.scn.sap.com/wiki/pages/viewpage.actionmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.