CVE-2021-38181: 
SAP NetWeaver Application Server ABAP vulnerability analysis and mitigation

CVE-2021-38181 is a vulnerability affecting SAP NetWeaver AS ABAP and ABAP Platform versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, 755, and 756. The vulnerability allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service (NVD).

The vulnerability has been assigned a CVSS v3.1 Base Score of 7.5 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. The CVSS v2.0 Base Score is 5.0 (MEDIUM) with vector (AV:N/AC:L/Au:N/C:N/I:N/A:P). The vulnerability primarily affects the availability of the service, with no direct impact on confidentiality or integrity (NVD).

When exploited, the vulnerability can result in a denial of service condition, preventing legitimate users from accessing the affected SAP services. This can significantly impact business operations that rely on the affected SAP NetWeaver AS ABAP and ABAP Platform systems (NVD).

SAP has released security patches to address this vulnerability. Organizations using affected versions of SAP NetWeaver AS ABAP and ABAP Platform should apply the security updates as detailed in SAP Security Note 3080710 (SAP Note).