PT-2021-17547 · Sap · Sap Gui For Windows

Published

2021-05-11

Updated

2021-06-29

CVE-2021-27612

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions SAP GUI for Windows versions prior to 7.60 PL10 SAP GUI for Windows versions prior to 7.70 PL1

Description The issue allows SAP GUI for Windows to forward a user to a specific malicious website, which could contain malware or lead to phishing attacks aimed at stealing the victim's credentials.

Recommendations For SAP GUI for Windows versions prior to 7.60 PL10, update to version 7.60 PL10 or later. For SAP GUI for Windows versions prior to 7.70 PL1, update to version 7.70 PL1 or later.

Fix

Open Redirect

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-601

Related Identifiers

CVE-2021-27612

Affected Products

Sap Gui For Windows

PT-2021-17547 · Sap · Sap Gui For Windows

CVE-2021-27612

Weakness Enumeration

Related Identifiers

Affected Products

References · 6