CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-21471

In CLA-Assistant, versions before 2.8.5, due to improper access control an authenticated user could access API endpoints which are not intended to be used by the user. This could impact the integrity of the application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.3%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

Products affected by CVE-2021-21471

Sap » Cla-Assistant » Version: 1.10.0

cpe:2.3:a:sap:cla-assistant:1.10.0
Sap » Cla-Assistant » Version: 1.10.1

cpe:2.3:a:sap:cla-assistant:1.10.1
Sap » Cla-Assistant » Version: 1.4.0

cpe:2.3:a:sap:cla-assistant:1.4.0
Sap » Cla-Assistant » Version: 1.4.1

cpe:2.3:a:sap:cla-assistant:1.4.1
Sap » Cla-Assistant » Version: 1.5.0

cpe:2.3:a:sap:cla-assistant:1.5.0
Sap » Cla-Assistant » Version: 1.6.0

cpe:2.3:a:sap:cla-assistant:1.6.0
Sap » Cla-Assistant » Version: 1.7.0

cpe:2.3:a:sap:cla-assistant:1.7.0
Sap » Cla-Assistant » Version: 1.7.1

cpe:2.3:a:sap:cla-assistant:1.7.1
Sap » Cla-Assistant » Version: 1.8.0

cpe:2.3:a:sap:cla-assistant:1.8.0
Sap » Cla-Assistant » Version: 1.8.1

cpe:2.3:a:sap:cla-assistant:1.8.1
Sap » Cla-Assistant » Version: 1.8.2

cpe:2.3:a:sap:cla-assistant:1.8.2
Sap » Cla-Assistant » Version: 1.8.3

cpe:2.3:a:sap:cla-assistant:1.8.3
Sap » Cla-Assistant » Version: 1.8.4

cpe:2.3:a:sap:cla-assistant:1.8.4
Sap » Cla-Assistant » Version: 1.9.0

cpe:2.3:a:sap:cla-assistant:1.9.0
Sap » Cla-Assistant » Version: 1.9.1

cpe:2.3:a:sap:cla-assistant:1.9.1
Sap » Cla-Assistant » Version: 1.9.2

cpe:2.3:a:sap:cla-assistant:1.9.2
Sap » Cla-Assistant » Version: 2.0.0

cpe:2.3:a:sap:cla-assistant:2.0.0
Sap » Cla-Assistant » Version: 2.0.1

cpe:2.3:a:sap:cla-assistant:2.0.1
Sap » Cla-Assistant » Version: 2.0.2

cpe:2.3:a:sap:cla-assistant:2.0.2
Sap » Cla-Assistant » Version: 2.0.3

cpe:2.3:a:sap:cla-assistant:2.0.3
Sap » Cla-Assistant » Version: 2.1.0

cpe:2.3:a:sap:cla-assistant:2.1.0
Sap » Cla-Assistant » Version: 2.1.1

cpe:2.3:a:sap:cla-assistant:2.1.1
Sap » Cla-Assistant » Version: 2.2.0

cpe:2.3:a:sap:cla-assistant:2.2.0
Sap » Cla-Assistant » Version: 2.2.1

cpe:2.3:a:sap:cla-assistant:2.2.1
Sap » Cla-Assistant » Version: 2.3.0

cpe:2.3:a:sap:cla-assistant:2.3.0
Sap » Cla-Assistant » Version: 2.3.1

cpe:2.3:a:sap:cla-assistant:2.3.1
Sap » Cla-Assistant » Version: 2.3.2

cpe:2.3:a:sap:cla-assistant:2.3.2
Sap » Cla-Assistant » Version: 2.4.0

cpe:2.3:a:sap:cla-assistant:2.4.0
Sap » Cla-Assistant » Version: 2.4.1

cpe:2.3:a:sap:cla-assistant:2.4.1
Sap » Cla-Assistant » Version: 2.4.2

cpe:2.3:a:sap:cla-assistant:2.4.2
Sap » Cla-Assistant » Version: 2.4.3

cpe:2.3:a:sap:cla-assistant:2.4.3
Sap » Cla-Assistant » Version: 2.4.4

cpe:2.3:a:sap:cla-assistant:2.4.4
Sap » Cla-Assistant » Version: 2.4.5

cpe:2.3:a:sap:cla-assistant:2.4.5
Sap » Cla-Assistant » Version: 2.4.6

cpe:2.3:a:sap:cla-assistant:2.4.6
Sap » Cla-Assistant » Version: 2.5.0

cpe:2.3:a:sap:cla-assistant:2.5.0
Sap » Cla-Assistant » Version: 2.5.1

cpe:2.3:a:sap:cla-assistant:2.5.1
Sap » Cla-Assistant » Version: 2.5.2

cpe:2.3:a:sap:cla-assistant:2.5.2
Sap » Cla-Assistant » Version: 2.6.0

cpe:2.3:a:sap:cla-assistant:2.6.0
Sap » Cla-Assistant » Version: 2.6.1

cpe:2.3:a:sap:cla-assistant:2.6.1
Sap » Cla-Assistant » Version: 2.6.2

cpe:2.3:a:sap:cla-assistant:2.6.2
Sap » Cla-Assistant » Version: 2.7.0

cpe:2.3:a:sap:cla-assistant:2.7.0
Sap » Cla-Assistant » Version: 2.8.0

cpe:2.3:a:sap:cla-assistant:2.8.0
Sap » Cla-Assistant » Version: 2.8.1

cpe:2.3:a:sap:cla-assistant:2.8.1
Sap » Cla-Assistant » Version: 2.8.2

cpe:2.3:a:sap:cla-assistant:2.8.2
Sap » Cla-Assistant » Version: 2.8.3

cpe:2.3:a:sap:cla-assistant:2.8.3
Sap » Cla-Assistant » Version: 2.8.4

cpe:2.3:a:sap:cla-assistant:2.8.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-21471

Products

Pricing

Contact Us