Transport Authorization Vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform

Transport Authorization Vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform

CVE-2021-40504 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

A certain template role in SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, contains transport authorizations, which exceed expected display only permissions.

Learn more about our Cis Benchmark Audit For Server Software.