CVE-2021-38179
published 2021-10-12CVE-2021-38179: Debug function of Admin UI of SAP Business One Integration is enabled by default. This allows Admin User to see the captured packet contents which may include…
medium4.9CVSS 3.1
AVNACLPRHUINSUCHINAN
Debug function of Admin UI of SAP Business One Integration is enabled by default. This allows Admin User to see the captured packet contents which may include User credentials.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sap | business_one | — | — |
| sap_se | sap_business_one | < 10.0 | 10.0 |