CVE-2020-6239

Summary

Under certain conditions SAP Business One (Backup service), versions 9.3, 10.0, allows an attacker with admin permissions to view SYSTEM user password in clear text, leading to Information Disclosure.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Business One (Backup service)< 9.3affected
SAP SESAP Business One (Backup service)< 10.0affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References