CVE-2021-27614

CWE-743 documents3 sources

Severity

7.1HIGH

EPSS

0.0%

top 87.23%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SAP Business-one-hana-chef-cookbook SAP Business ONE

Timeline

PublishedMay 11

Latest updateMay 24

Description

SAP Business One Hana Chef Cookbook, versions - 8.82, 9.0, 9.1, 9.2, 9.3, 10.0, used to install SAP Business One on SAP HANA, allows an attacker to inject code that can be executed by the application. An attacker could thereby control the behaviour of the application thereby highly impacting the integrity and availability of the application.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:HExploitability: 1.8 | Impact: 5.2

Affected Packages2 packages

▶NVDsap/business-one-hana-chef-cookbook0.1.19, 0.1.6, 0.1.7+2

▶NVDsap/business_one6 versions+5

🔴Vulnerability Details

GHSA

GHSA-7qm6-8g5f-g9v3: SAP Business One Hana Chef Cookbook, versions - 8↗2022-05-24

▶

CVEList

CVE-2021-27614: SAP Business One Hana Chef Cookbook, versions - 8↗2021-05-11

▶