Remote URL Redirection Vulnerability in SAP NetWeaver Knowledge Management
CVE-2021-33707
Key Information:
- Vendor
SAP
- Vendor
- CVE Published:
- 10 August 2021
What is CVE-2021-33707?
SAP NetWeaver Knowledge Management is vulnerable to an open redirect that enables remote attackers to manipulate stored URLs. By redirecting users to unintended external sites, attackers can carry out phishing schemes, potentially compromising user credentials and sensitive information. This vulnerability highlights the importance of validating URL inputs to mitigate unauthorized access risks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
SAP NetWeaver (Knowledge Management) < 7.30 < 7.30
SAP NetWeaver (Knowledge Management) < 7.31 < 7.31
SAP NetWeaver (Knowledge Management) < 7.40 < 7.40
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved