Security Advisory

CVE-2021-33692

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-15 18:01:43

Last updated 2024-08-03 23:58:22

Assigner sap

State PUBLISHED

Description

SAP Cloud Connector, version - 2.0, allows the upload of zip files as backup. This backup file can be tricked to inject special elements such as .. and / separators, for attackers to escape outside of the restricted location to access files or directories.

← Browse all CVEs View on cve.org ↗