Null Pointer Dereference Vulnerability in SAP CommonCryptoLib
CVE-2021-38177
7.5HIGH
What is CVE-2021-38177?
SAP CommonCryptoLib versions 8.5.38 and earlier are susceptible to a null pointer dereference when an unauthenticated attacker sends specially crafted malicious HTTP requests. This vulnerability can lead to the crashing of the SAP application, severely affecting the system’s availability and potentially disrupting services reliant on SAP.
Affected Version(s)
SAP CommonCryptoLib < 8.5.38 or lower