PT-2021-21987 · Sap · Sap Business One Integration

Published

2021-10-12

Updated

2022-07-12

CVE-2021-38179

CVSS v3.1

4.9

Medium

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions: SAP Business One Integration (affected versions not specified)

Description: The debug function of the Admin UI in SAP Business One Integration is enabled by default, allowing admin users to view captured packet contents. This may include user credentials, potentially exposing sensitive information.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-38179

Affected Products

Sap Business One Integration

PT-2021-21987 · Sap · Sap Business One Integration

CVE-2021-38179

Related Identifiers

Affected Products

References · 4