Bypassing LDAP Authentication in SAP HANA Database Version 2.0

CVE-2021-21484 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

LDAP authentication in SAP HANA Database version 2.0 can be bypassed if the attached LDAP directory server is configured to enable unauthenticated bind.

Learn more about our Cis Benchmark Audit For Bind.