Cloud Connector
CVE-2021-33692
HIGH
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
SAP Cloud Connector, version - 2.0, allows the upload of zip files as backup. This backup file can be tricked to inject special elements such as '..' and '/' separators, for attackers to escape outside of the restricted location to access files or directories.
AnalysisAI
SAP Cloud Connector, version - 2.0, allows the upload of zip files as backup. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.
Technical ContextAI
This vulnerability is classified as Path Traversal (CWE-22), which allows attackers to access files and directories outside the intended path. SAP Cloud Connector, version - 2.0, allows the upload of zip files as backup. This backup file can be tricked to inject special elements such as '..' and '/' separators, for attackers to escape outside of the restricted location to access files or directories. Affected products include: Sap Cloud Connector.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Validate and canonicalize file paths. Use chroot or sandboxing. Reject input containing path separators or '../' sequences.
More in Cloud Connector
View allSAP Cloud Connector, before version 2.11.3, allows an attacker to inject code that can be executed by the application. R
SAP Cloud Connector, before version 2.11.3, does not perform any authentication checks for functionalities that require
Potentially, SAP Cloud Connector, version - 2.0 communication with the backend is accepted without sufficient validation
Citrix Cloud Connector before 6.31.0.62192 suffers from insecure storage of sensitive information due to sensitive infor
Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine ser
SAP Cloud Connector, version - 2.0, allows an authenticated administrator to modify a configuration file to inject malic
SAP Cloud Connector, version - 2.0, does not sufficiently encode user-controlled inputs, allowing an attacker with Admin
SAP Cloud Connector - version 2.0, allows an authenticated user with low privilege to perform Denial of service attack f
Same weakness CWE-22 – Path Traversal
View allSame technique Path Traversal
View allShare
External POC / Exploit Code
Leaving vuln.today