PT-2021-14545 · Sap · Sap Web Dynpro Abap

Published

2021-02-09

Updated

2021-02-16

CVE-2021-21478

CVSS v2.0

5.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions SAP Web Dynpro ABAP (affected versions not specified)

Description The issue allows an attacker to redirect users to a malicious site due to Reverse Tabnabbing vulnerabilities. This can potentially affect a large number of devices worldwide, although the exact number is not specified. Reverse Tabnabbing is a type of vulnerability where an attacker can redirect a user to a malicious website by exploiting the way browsers handle tabs.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Open Redirect

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-601

Related Identifiers

CVE-2021-21478

Affected Products

Sap Web Dynpro Abap

PT-2021-14545 · Sap · Sap Web Dynpro Abap

CVE-2021-21478

Weakness Enumeration

Related Identifiers

Affected Products

References · 6