CVE-2021-44233

HIGH

SAP GRC Access Control V1100_700 V1100_731 V1200_750 - Authenticated Privilege Escalation

Title source: llm
STIX 2.1

Description

SAP GRC Access Control - versions V1100_700, V1100_731, V1200_750, does not perform necessary authorization checks for an authenticated user, which could lead to escalation of privileges.

References (2)

Core 2
Core References
Permissions Required x_refsource_misc
https://launchpad.support.sap.com/#/notes/3080816

Scores

CVSS v3 8.8
EPSS 0.0041
EPSS Percentile 61.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-862
Status published
Products (3)
sap/access_control v1100_700
sap/access_control v1100_731
sap/access_control v1200_750
Published Dec 14, 2021
Tracked Since Feb 18, 2026