Authorization Flaw in SAP ABAP Platform Kernel Affects Multiple Versions
CVE-2021-40501
8.1HIGH
What is CVE-2021-40501?
The SAP ABAP Platform Kernel, specifically in versions 7.77, 7.81, 7.85, and 7.86, contains a vulnerability that allows authenticated business users to bypass necessary authorization checks. This flaw enables these users to access and modify sensitive data that they should not have permissions for, potentially leading to unauthorized information disclosure. The vulnerability does not directly impact system performance or availability.
Affected Version(s)
SAP ABAP Platform Kernel < 7.77 < 7.77
SAP ABAP Platform Kernel < 7.81 < 7.81
SAP ABAP Platform Kernel < 7.85 < 7.85