Business One Security Vulnerabilities and Issues — Business One CVE List

Lucene search

SapBusiness One

6 matches found

CVE•added 2022/01/14 8:15 p.m.•46 views

CVE-2021-44234

SAP Business One - version 10.0, extended log stores information that can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.

5.5CVSS5.3AI score0.0006EPSS

CVE•added 2019/02/15 6:29 p.m.•44 views

CVE-2019-0256

Under certain conditions SAP Business One Mobile Android App, version 1.2.12, allows an attacker to access information which would otherwise be restricted.

5.5CVSS5.3AI score0.00079EPSS

CVE•added 2023/08/08 1:15 a.m.•41 views

CVE-2023-37487

SAP Business One (Service Layer) - version 10.0, allows an authenticated attacker with deep knowledge perform certain operation to access unintended data over the network which could lead to high impact on confidentiality with no impact on integrity and availability of the application

5.3CVSS5.2AI score0.00196EPSS

CVE•added 2018/04/10 3:29 p.m.•40 views

CVE-2018-2410

SAP Business One, 9.2, 9.3, browser access does not sufficiently encode user controlled inputs, which results in a Cross-Site Scripting (XSS) vulnerability.

5.4CVSS5.3AI score0.00281EPSS

CVE•added 2018/09/11 3:29 p.m.•37 views

CVE-2018-2460

SAP Business One Android application, version 1.2, does not verify the certificate properly for HTTPS connection. This allows attacker to do MITM attack.

5.9CVSS5.6AI score0.00148EPSS

CVE•added 2021/09/14 12:15 p.m.•34 views

CVE-2021-33686

Under certain conditions, SAP Business One version - 10.0, allows an unauthorized attacker to get access to some encrypted sensitive information, but does not have control over kind or degree.

5.3CVSS5.2AI score0.00204EPSS