VYPR

MII

by SAP

CVEs (1)

  • CVE-2021-21480Mar 9, 2021
    risk 0.02cvss epss 0.51

    SAP MII allows users to create dashboards and save them as JSP through the SSCE (Self Service Composition Environment). An attacker can intercept a request to the server, inject malicious JSP code in the request and forward to server. When this dashboard is opened by users…