CVE-2021-33685
published 2021-09-14CVE-2021-33685: SAP Business One version - 10.0 allows low-level authorized attacker to traverse the file system to access files or directories that are outside of the…
medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
SAP Business One version - 10.0 allows low-level authorized attacker to traverse the file system to access files or directories that are outside of the restricted directory. A successful attack allows access to high level sensitive data
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | business_one | — | — |
| sap_se | sap_business_one | < 10.0 | 10.0 |