Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-03051
HistoryJan 12, 2023 - 12:00 a.m.

SAP Bank Account Management Information Disclosure Vulnerability

2023-01-1200:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
sap
bank account management
information disclosure
vulnerability
personal data
url
sensitive data
attacker
exploit

EPSS

0.001

Percentile

28.3%

JSON

SAP Bank Account Management is a bank account management system from SAP, a German company. An information disclosure vulnerability exists in the SAP Bank Account Management application, which stems from the fact that when a user clicks on a smart link to navigate to another application, personal data is displayed directly in its URL. They could be captured in log files, bookmarks, etc., which could compromise sensitive data from the application. An attacker could exploit the vulnerability to obtain sensitive information.

Related

cvelist 1
nvd 1
prion 1
cve 1
cvelist
cvelist
CVE-2023-0023 Information Disclosure in SAP Bank Account Management (Manage Banks)
2023-01-10 03:32:49
nvd
nvd
CVE-2023-0023
2023-01-10 04:15:10
prion
prion
Code injection
2023-01-10 04:15:00
cve
cve
CVE-2023-0023
2023-01-10 04:15:10

EPSS

0.001

Percentile

28.3%

JSON
Related for CNVD-2023-03051
cvelist1nvd1prion1cve1