SAP Business One Information Disclosure Vulnerability

SAP Business One is a suite of enterprise management software from SAP, a German company. The software includes financial management, operations management, and human resources management functions.SAP Business One in version 10.0 contains an information disclosure vulnerability that stems from the debugging feature of the SAP Business One Integration management UI, which is enabled by default. The administrator user views the contents of captured packets, which may include user credentials. An attacker could exploit the vulnerability to obtain sensitive information.