CVE-2021-38179
N/A
N/A
Summary
Debug function of Admin UI of SAP Business One Integration is enabled by default. This allows Admin User to see the captured packet contents which may include User credentials.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| SAP SE | SAP Business One | < 10.0 | affected |
Weaknesses
- Information Disclosure
ADP Enrichment
CVE Program Container
Additional References
- https://launchpad.support.sap.com/#/notes/3074819
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=587169983
References
- https://launchpad.support.sap.com/#/notes/3074819
- https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=587169983
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.