CVE-2022-28771

Due to missing authentication check, SAP Business one License service API - version 10.0 allows an unauthenticated attacker to send malicious http requests over the network. On successful exploitation, an attacker can break the whole application making it inaccessible.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:sap:business_one_license_service_api:10.0:*:*:*:*:*:*:*

Information

Published : 2022-07-12 14:15

Updated : 2022-07-22 09:46


NVD link : CVE-2022-28771

Mitre link : CVE-2022-28771


JSON object : View

CWE
CWE-287

Improper Authentication

Advertisement

dedicated server usa

Products Affected

sap

  • business_one_license_service_api