What is the severity of CVE-2023-37487?

The severity of CVE-2023-37487 is medium with a severity value of 5.3.

How can an attacker exploit CVE-2023-37487?

An authenticated attacker with deep knowledge can perform certain operations to access unintended data over the network, which could lead to a high impact on confidentiality.

What is the impact of CVE-2023-37487 on integrity and availability?

CVE-2023-37487 has no impact on integrity and availability of the application.

How can I mitigate the vulnerability in SAP Business One (Service Layer) version 10.0?

To mitigate the vulnerability, it is recommended to update the SAP Business One (Service Layer) to the latest version and apply any relevant patches provided by SAP.

Where can I find more information about CVE-2023-37487?

You can find more information about CVE-2023-37487 in the SAP Security Notes and SAP documentation provided in the references.

Vulnerability/
CVE-2023-37487

medium

5.3

CWE

200 497

8/8/2023

10/10/2024

CVE-2023-37487: Security misconfiguration vulnerability in SAP Business One (Service Layer)

First published: Tue Aug 08 2023(Updated: )

SAP Business One (Service Layer) - version 10.0, allows an authenticated attacker with deep knowledge perform certain operation to access unintended data over the network which could lead to high impact on confidentiality with no impact on integrity and availability of the application

Credit: cna@sap.com cna@sap.com

Affected Software	Affected Version	How to fix
Sap Business One	=10.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2023-37487?
The severity of CVE-2023-37487 is medium with a severity value of 5.3.
How can an attacker exploit CVE-2023-37487?
An authenticated attacker with deep knowledge can perform certain operations to access unintended data over the network, which could lead to a high impact on confidentiality.
What is the impact of CVE-2023-37487 on integrity and availability?
CVE-2023-37487 has no impact on integrity and availability of the application.
How can I mitigate the vulnerability in SAP Business One (Service Layer) version 10.0?
To mitigate the vulnerability, it is recommended to update the SAP Business One (Service Layer) to the latest version and apply any relevant patches provided by SAP.
Where can I find more information about CVE-2023-37487?
You can find more information about CVE-2023-37487 in the SAP Security Notes and SAP documentation provided in the references.

collector/nvd-index
agent/references
agent/author
agent/type
agent/softwarecombine
agent/severity
agent/title
agent/first-publish-date
agent/tags
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/description
agent/event
collector/nvd-api
source/NVD
agent/software-canonical-lookup
vendor/sap
canonical/sap business one
version/sap business one/10.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.