CISA/NIST NVD Alert - CVE-2021-38163

NetWeaver - SAP NetWeaver Unrestricted File Upload vulnerability

Jun 10, 2022

CISA/NIST Known Exploited Vulnerability Alert

CVE Identification Number

CVE-2021-38163

Vendor Name

SAP

Product

NetWeaver

Vulnerability Name

SAP NetWeaver Unrestricted File Upload vulnerability

Description of Vulnerability

SAP NetWeaver contains a vulnerability that allows unrestricted file upload.

Date Added to CISA Known Exploited Vulnerability Database

2022-06-09

Remediation

Apply updates per vendor instructions.

Link to NIST NVD CVE Listing

National Vulnerability Database Source

No posts

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts