CVE-2021-27616

Summary

Under certain conditions, SAP Business One Hana Chef Cookbook, versions - 8.82, 9.0, 9.1, 9.2, 9.3, 10.0, used to install SAP Business One for SAP HANA, allows an attacker to exploit an insecure temporary backup path and to access information which would otherwise be restricted, resulting in Information Disclosure vulnerability highly impacting the confidentiality, integrity and availability of the application.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Business One, version for SAP HANA (Cookbooks)< 8.82affected
SAP SESAP Business One, version for SAP HANA (Cookbooks)< 9.0affected
SAP SESAP Business One, version for SAP HANA (Cookbooks)< 9.1affected
SAP SESAP Business One, version for SAP HANA (Cookbooks)< 9.2affected
SAP SESAP Business One, version for SAP HANA (Cookbooks)< 9.3affected
SAP SESAP Business One, version for SAP HANA (Cookbooks)< 10.0affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References