CVE-2021-33685

Summary

SAP Business One version - 10.0 allows low-level authorized attacker to traverse the file system to access files or directories that are outside of the restricted directory. A successful attack allows access to high level sensitive data

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Business One< 10.0affected

Weaknesses

  • Directory/Path Traversal

ADP Enrichment

CVE Program Container

Additional References

References