CVE-2021-41251MEDIUM≥ 0, < 1.52.02021-11-10
CVE-2021-41251 [MEDIUM] CWE-200 Unauthorized access to data in @sap-cloud-sdk/core
Unauthorized access to data in @sap-cloud-sdk/core
### Impact
This affects applications on SAP Business Technology Platform that use the SAP Cloud SDK and enabled caching of destinations.
In some cases, when user information was missing, destinations were cached without user information, allowing other users to retrieve the same destination with its permissions.
By default, destination caching is disabled. If it
ghsaosv