Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:2 a.m.8 views

CVE-2023-33993

B1i module of SAP Business One - version 10.0, application allows an authenticated user with deep knowledge to send crafted queries over the network to read or modify the SQL data. On successful exploitation, the attacker can cause high impact on confidentiality, integrity and availability of the...

7.5CVSS7.3AI score0.00477EPSS
Exploits0References1
CVE
CVE
added 2023/10/10 1:35 a.m.48 views

CVE-2023-41365

The CVE-2023-41365 issue affects SAP Business One (B1i) 10.0. An authorized attacker can retrieve the fault message stack trace to perform an XML External Entity (XXE) injection, causing information disclosure. The documented impact is limited to confidentiality with no impact to integrity or ava...

4.3CVSS4.4AI score0.00318EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/08/11 12:0 a.m.7 views

The vulnerability of component B1i Layer of the SAP Business One resource management system allows a hacker to gain access to read, modify, or delete data.

The vulnerability of component B1i Layer in the SAP Business One resource management system is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to remotely gain access to read, modify, or delete data by sending...

7.1CVSS7.3AI score0.00477EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/08/08 1:15 a.m.3 views

CVE-2023-33993

B1i module of SAP Business One - version 10.0, application allows an authenticated user with deep knowledge to send crafted queries over the network to read or modify the SQL data. On successful exploitation, the attacker can cause high impact on confidentiality, integrity and availability of the...

7.5CVSS5.8AI score0.00477EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/08/08 12:35 a.m.28 views

CVE-2023-33993 SQL Injection vulnerability in SAP Business One B1i Layer

B1i module of SAP Business One - version 10.0, application allows an authenticated user with deep knowledge to send crafted queries over the network to read or modify the SQL data. On successful exploitation, the attacker can cause high impact on confidentiality, integrity and availability of the...

7.1CVSS7.8AI score0.00477EPSS
Exploits0References2
CVE
CVE
added 2023/08/08 12:35 a.m.59 views

CVE-2023-33993

CVE-2023-33993 affects the SAP Business One B1i module, version 10.0. An authenticated user with deep knowledge can send crafted network queries to read or modify SQL data, causing high impact to confidentiality, integrity and availability. Root cause described as insufficient protection of the S...

7.5CVSS7.1AI score0.00477EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder