CVE-2021-21474
MEDIUMSAP HANA Database 1.0, 2.0 - SAML Token Tampering via MD5 Digest Weakness
Title source: llmDescription
SAP HANA Database, versions - 1.0, 2.0, accepts SAML tokens with MD5 digest, an attacker who manages to obtain an MD5-digest signed SAML Assertion issued for an SAP HANA instance might be able to tamper with it and alter it in a way that the digest continues to be the same and without invalidating the digital signature, this allows them to impersonate as user in HANA database and be able to read the contents in the database.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=568460543
Permissions Required x_refsource_misc
https://launchpad.support.sap.com/#/notes/2992154
Scores
CVSS v3
6.5
EPSS
0.0070
EPSS Percentile
48.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Details
CWE
CWE-326
Status
published
Products (2)
sap/hana_database
1.00
sap/hana_database
2.00
Published
Feb 09, 2021
Tracked Since
Feb 18, 2026