Unrated severityNVD Advisory· Published Sep 14, 2021· Updated Aug 4, 2024
CVE-2021-38177
CVE-2021-38177
Description
SAP CommonCryptoLib version 8.5.38 or lower is vulnerable to null pointer dereference vulnerability when an unauthenticated attacker sends crafted malicious data in the HTTP requests over the network, this causes the SAP application to crash and has high impact on the availability of the SAP system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=8.5.38
- SAP SE/SAP CommonCryptoLibv5Range: < 8.5.38 or lower
Patches
Vulnerability mechanics
References
4- packetstormsecurity.com/files/165749/SAP-CommonCryptoLib-Null-Pointer-Dereference.htmlmitrex_refsource_MISC
- seclists.org/fulldisclosure/2022/Jan/74mitremailing-listx_refsource_FULLDISC
- launchpad.support.sap.commitrex_refsource_MISC
- wiki.scn.sap.com/wiki/pages/viewpage.actionmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.