CVE Published: 13/04/2021 |
CVE Updated: 03/08/2024 |
CVE Year: 2021 Source: sap |
Vendor: SAP SE |
Product: SAP NetWeaver AS for JAVA (Telnet Commands) Status : PUBLISHED
CVE-2021-21485 Description
An unauthorized attacker may be able to entice an administrator to invoke telnet commands of an SAP NetWeaver Application Server for Java that allow the attacker to gain NTLM hashes of a privileged user.