2 matches found
CVE-2022-35292
CVE-2022-35292 concerns SAP Business One where a service’s executable path, if it contains spaces and is not quoted, enables an Unquoted Service Path vulnerability. This allows a local attacker to gain SYSTEM privileges, potentially impacting confidentiality, integrity, and availability. Reported...
CVE-2022-35292
In SAP Business One application when a service is created, the executable path contains spaces and isn’t enclosed within quotes, leading to a vulnerability known as Unquoted Service Path which allows a user to gain SYSTEM privileges. If the service is exploited by adversaries, it can be used to...