CVE-2021-33671

Name of the Vulnerable Software and Affected Versions: SAP NetWeaver Guided Procedures (Administration Workset) versions 7.10 through 7.50

Description: The issue results from the lack of necessary authorization checks for an authenticated user, leading to escalation of privileges. This could allow unauthorized users to abuse functionality restricted to a particular user group and potentially read, modify, or delete restricted data.

Recommendations: For versions 7.10 through 7.50, ensure that proper authorization checks are implemented to prevent escalation of privileges. As a temporary workaround, consider restricting access to sensitive data and functionality to minimize the risk of exploitation.