CVE-2021-33698: Malicious File Upload
First published: Wed Sep 15 2021(Updated: )
SAP Business One, version - 10.0, allows an attacker with business authorization to upload any files (including script files) without the proper file format validation.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sap Business One | =10.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this vulnerability?
The vulnerability ID of this vulnerability is CVE-2021-33698.
What is the severity of CVE-2021-33698?
CVE-2021-33698 has a severity rating of 8.8 (critical).
What is the affected software and version of CVE-2021-33698?
The affected software and version of CVE-2021-33698 is SAP Business One version 10.0.
What is the impact of CVE-2021-33698?
CVE-2021-33698 allows an attacker with business authorization to upload any files, including script files, without proper file format validation.
How can I fix CVE-2021-33698?
To fix CVE-2021-33698, it is recommended to apply the necessary patches or updates provided by SAP.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/sap
- canonical/sap business one
- version/sap business one/10.0