CVE-2021-21466

Name of the Vulnerable Software and Affected Versions SAP Business Warehouse versions 700 through 750, 782 SAP BW/4HANA versions 100 through 200

Description The issue allows a low-privileged attacker to inject code using a remote-enabled function module over the network. This can lead to the creation of a malicious ABAP report, which can be used to access sensitive data, inject malicious UPDATE statements that could impact the operating system, or disrupt the functionality of the SAP system, potentially leading to a Denial of Service.

Recommendations For SAP Business Warehouse versions 700 through 750, 782, update to a version that includes the fix for this issue. For SAP BW/4HANA versions 100 through 200, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.