CVE-2022-31593
First published: Tue Jul 12 2022(Updated: )
SAP Business One client - version 10.0 allows an attacker with low privileges, to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sap Business One | =10.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-31593?
CVE-2022-31593 is a vulnerability in SAP Business One client version 10.0 that allows an attacker with low privileges to inject code that can be executed by the application, enabling them to control its behavior.
How severe is CVE-2022-31593?
CVE-2022-31593 has a severity rating of 8.8 (high).
Which versions of SAP Business One client are affected by CVE-2022-31593?
SAP Business One client version 10.0 is affected by CVE-2022-31593.
How can an attacker exploit CVE-2022-31593?
An attacker with low privileges can exploit CVE-2022-31593 by injecting code that can be executed by the SAP Business One client application.
Are there any references regarding CVE-2022-31593?
Yes, you can find more information about CVE-2022-31593 at the following references: [Support Note](https://launchpad.support.sap.com/#/notes/3191012) and [SAP Document](https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html).
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/weakness
- agent/description
- agent/tags
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/sap
- canonical/sap business one
- version/sap business one/10.0