CVE-2021-27603

Name of the Vulnerable Software and Affected Versions SAP NetWeaver AS ABAP versions 731, 740, 750

Description The issue allows an attacker to cause a Denial of Service, affecting the Availability of the SAP system by blocking all work processes. This is achieved by calling the SPI WAIT MILLIS function module multiple times, keeping a work process busy for any length of time.

Recommendations For versions 731, 740, 750, consider restricting access to the SPI WAIT MILLIS function module to prevent its misuse and minimize the risk of Denial of Service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.