First published: Tue Sep 10 2019(Updated: )
Under certain conditions SAP Business One client (B1_ON_HANA, SAP-M-BO), before versions 9.2 and 9.3, allows an attacker to access information which would otherwise be restricted.
Credit: cna@sap.com
Affected Software | Affected Version | How to fix |
---|---|---|
SAP Business One client | =9.2 | |
SAP Business One client | =9.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-0353 has a medium severity rating due to the potential unauthorized access to restricted information.
To fix CVE-2019-0353, upgrade the SAP Business One client to version 9.4 or later, as this vulnerability is addressed in these versions.
The affected versions for CVE-2019-0353 are SAP Business One client versions 9.2 and 9.3.
CVE-2019-0353 is an unauthorized access vulnerability that allows sensitive information disclosure.
Yes, CVE-2019-0353 can potentially be exploited remotely depending on the specific deployment and configuration of SAP Business One.