CVE-2021-40501

Name of the Vulnerable Software and Affected Versions SAP ABAP Platform Kernel versions 7.77, 7.81, 7.85, 7.86

Description The issue results in escalation of privileges for an authenticated business user due to a lack of necessary authorization checks. This allows the user to read and modify data beyond the vulnerable system. However, the attacker cannot significantly reduce the system's performance or stop the system.

Recommendations For versions 7.77, 7.81, 7.85, 7.86, update to a version that includes the necessary authorization checks to prevent escalation of privileges. At the moment, there is no information about a newer version that contains a fix for this vulnerability.