CVE-2021-21474 — MEDIUM (6.5)

Vulnerability Description

SAP HANA Database, versions - 1.0, 2.0, accepts SAML tokens with MD5 digest, an attacker who manages to obtain an MD5-digest signed SAML Assertion issued for an SAP HANA instance might be able to tamper with it and alter it in a way that the digest continues to be the same and without invalidating the digital signature, this allows them to impersonate as user in HANA database and be able to read the contents in the database.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Sap	Hana Database	1.00

Related Weaknesses (CWE)

CWE-326

References

https://launchpad.support.sap.com/#/notes/2992154Permissions Required
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=568460543Vendor Advisory
https://launchpad.support.sap.com/#/notes/2992154Permissions Required
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=568460543Vendor Advisory

FAQ

What is CVE-2021-21474?

CVE-2021-21474 is a vulnerability with a CVSS score of 6.5 (MEDIUM). SAP HANA Database, versions - 1.0, 2.0, accepts SAML tokens with MD5 digest, an attacker who manages to obtain an MD5-digest signed SAML Assertion issued for an SAP HANA instance might be able to tamp...

How severe is CVE-2021-21474?

CVE-2021-21474 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-21474?

Check the references section above for vendor advisories and patch information. Affected products include: Sap Hana Database.