CVE-2023-0016: SQL Injection vulnerability in SAP Business Planning and Consolidation MS
First published: Tue Jan 10 2023(Updated: )
SAP BPC MS 10.0 - version 810, allows an unauthorized attacker to execute crafted database queries. The exploitation of this issue could lead to SQL injection vulnerability and could allow an attacker to access, modify, and/or delete data from the backend database.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sap Business Planning And Consolidation | =800 | |
| Sap Business Planning And Consolidation | =810 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/title
- agent/author
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/sap
- canonical/sap business planning and consolidation
- version/sap business planning and consolidation/800
- version/sap business planning and consolidation/810