CVE-2021-33699 HIGH

CVE-2021-33699

Vendor Sap Se
Product SAP Fiori Client Native Mobile for Android
Published August 10, 2021
Last update August 3, 2024

CVSS base score

7.6/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L

What the vulnerability does

01Description

Task Hijacking is a vulnerability that affects the applications running on Android devices due to a misconfiguration in their AndroidManifest.xml with their Task Control features. This allows an unauthorized attacker or malware to takeover legitimate apps and to steal user's sensitive information.

Key dates

02Disclosure timeline

August 10, 2021 CVE published
August 3, 2024 Record updated