CVE-2021-27616

Published: May 11, 2021Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Under certain conditions, SAP Business One Hana Chef Cookbook, versions - 8.82, 9.0, 9.1, 9.2, 9.3, 10.0, used to install SAP Business One for SAP HANA, allows an attacker to exploit an insecure temporary backup path and to access information which would otherwise be restricted, resulting in Information Disclosure vulnerability highly impacting the confidentiality, integrity and availability of the application.

Affected (9)

Products: Sap: Business One Hana Chef Cookbook, Business One

Sap

2 products

Business One Hana Chef Cookbook

Business One

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Sap Business One Hana Chef Cookbook	Version 0.1.19
Sap Business One Hana Chef Cookbook	Version 0.1.6
Sap Business One Hana Chef Cookbook	Version 0.1.7
Sap Business One	Version 10.0
Sap Business One	Version 8.82
Sap Business One	Version 9.0
Sap Business One	Version 9.1
Sap Business One	Version 9.2
Sap Business One	Version 9.3

References (4)

https://launchpad.support.sap.com/#/notes/3049661

Source: cna@sap.com

Permissions RequiredVendor Advisory

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=576094655

Source: cna@sap.com

Vendor Advisory

https://launchpad.support.sap.com/#/notes/3049661

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions RequiredVendor Advisory

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=576094655

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.