CVE-2021-21492

Published: 2021-04-13T19:15Z

Last Modified: 2024-11-21T05:48Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

SAP NetWeaver Application Server Java(HTTP Service), versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently validate logon group in URLs, resulting in a content spoofing vulnerability when directory listing is enabled. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt